RSS logo

Technical Support - Best Practice

Here we provide best practice guides and policies to help standardise your internal procedures.

Ref: eduroam
Title: eduroam Firewall Policy
Created: 25/9/12   Modified: 18/10/12

eduroam Network IP Filtering

Below is the list of current firewall policy applied to visitors using the EiS Kent eduroam network.

IPv6 Tunnel Broker NAT traversal

UDP/3653;TCP/3653 egress and established.

IPv6 Tunnel Broker Service

IP protocol 41 egress and established.

IPSec NAT traversal:

UDP/4500 egress and established.

Cisco IPSec NAT traversal

UDP/10000; TCP/10000 egress and established

PPTP

IP protocol 47 (GRE) egress and established;

TCP/1723 egress and established.

OpenVPN:

UDP/1194; TCP/1194 egress and established

UDP/5000-5110 egress and established

NTP

UDP/123 egress and established

SSH

TCP/22 egress and established.

HTTP

TCP/80 egress and established.

HTTPS

TCP/443 egress and established

LDAP

TCP/389 egress and established

LDAPS

TCP/636 egress and established

L2TP

UDP/1701 egress and established

IMSP

TCP/406 egress and established

IMAP4

TCP/143 egress and established.

IMAP3

TCP/220 egress and established

IMAPS

TCP/993 egress and established.

POP

TCP/110 egress and established

POP3S

TCP/995 egress and established

Passive (S)FTP

TCP/21 egress and established

SMTPS

TCP/465 egress and established

Message submission

TCP/587 egress and established

RDP

TCP/3389 egress and established

VNC

TCP/5900 egress and established

Citrix

TCP/1494 egress and established

AFS

UDP/7000 through UDP/7007 inclusive egress and established

ESP

IP protocol 50 egress and established

AH

IP protocol 51 egress and established

ISAKMP: and IKE

UDP/500 egress

SQUID Proxy

TCP/3128 egress and established

HTTP Proxy

TCP/8080 egress and established