HIAB Firewall Rules
This document provides the required information needed for the communication with the HIAB and OUTSCAN through a firewall.
The HIAB requires several firewall rules to allow for a smooth functionality in regard to updates and enrollments. Below is a list of rules that are used, however the Enrollment and Update rules are required and necessary. DNS host names are used for services where changes may occur without prior notification.
HIAB External/ OUTSCAN Internal
External Scanning from HIAB
Scheduler to Scanner
Communication to scanner, depends on Polling enabled or not.
This is also necessary when enrolling a scanner through scheduler.
For the HIAB to send emails
To resolve host names
To allow remote access to the console
To allow communications using a proxy server
To perform backup and imports
Outpost24 Network Scanning Range
Firewalls, IDSs and IPSs may interfere with the security scan if they have a reactive defense mechanism. In such case, we recommend to set up OUTSCAN (CIDR IP range 220.127.116.11/24, 18.104.22.168/22, IPv6 range 2001:67c:1084::/48, 2a13:5240::/29) as a trusted range.
The scanning occurs from within the below range:
- For IPv4: 22.214.171.124 to 126.96.36.199, 188.8.131.52 to 184.108.40.206.
- For IPv6: 2001:67c:1084::0 to 2001:067c:1084:ffff:ffff:ffff:ffff:ffff, 2a13:5240::0 to 2a13:5240:ffff:ffff:ffff:ffff:ffff:ffff.
© 2023 Outpost24® All rights reserved. This document may only be redistributed unedited and unaltered. This document may be cited and referenced only if clearly crediting Outpost24® and this document as the source. Any other reproduction and redistribution in print or electronically is strictly prohibited without explicit permission.
Outpost24® and OUTSCAN™ are trademarks of Outpost24® and its affiliated companies. All other brand names, product names or trademarks belong to their respective owners.