Network Security
The network topology is illustrated in the diagram below. More complete information on system architecture is included in the beginning of this document under Architecture and in the Enterprise Server Installation Guide found on the Notify Technology software portal page. (Access that portal at http://notifylink.notify.net, then click on Server Installation and User Guides in the Documentation column.)
The NotifyLink system is protected by a firewall. The only ports/protocols allowed incoming are 80/443 (HTTP/HTTPS). If the Remote Lookup option to an address book is used then 389/636 (LDAP/LDAPS) is needed. Outgoing ports are specific to each groupware server type and are listed in the charts below.
The NotifyLink system uses AES, TDES with key length
of 256 bits. It also uses SSL public key of 128 bytes.
Data Center Infrastructure
Firewall Rules/Policies
|
|
|
|
|
|
Source |
Destination |
Port |
Service |
|
Devices |
NotifyLink Http/Web |
80 or 443 |
HTTP or HTTPS |
|
Messaging |
IMAP4 server |
143 or 993 |
IMAP or IMAP SSL |
|
HTTP/Web |
LDAP server |
389 or 636 |
LDAP* or LDAPS* |
|
Email/PIM Servers | |||
|
Source |
Destination |
Port |
Service |
|
CGP |
IMAP4 Server |
143 or 993 |
IMAP or IMAP SSL |
|
Exchange |
Exchange PIM Server |
80 or 443 |
HTTP or HTTPS |
|
FirstClass |
PIM Server |
80 or 443 |
HTTP or HTTPS |
|
|
PIM Server |
80 or 443 |
HTTP or HTTPS |
|
GroupWise |
GroupWise: PO |
1677 |
GW Api |
|
Kerio |
PIM Server |
80 or 443 |
HTTP or HTTPS |
|
MDaemon |
PIM Server (SyncML) |
3000 or HTTPS Port |
HTTP or HTTPS |
|
Meeting Maker |
PIM Server |
8080 or 8443 |
HTTP or HTTPS |
|
Mirapoint |
Mirapoint Message Server |
80 or 443 |
HTTP or HTTPS |
|
Oracle |
Oracle PIM Server |
7779 or 4445 |
HTTP or HTTPS |
|
Scalix |
PIM Server |
80 or 443 |
CalDAV |
|
Sun |
Sun Calendar Express |
3080 or 4445 |
HTTP or HTTPS |
|
Sun |
Sun Contact Server (Communications Express) |
80 or 443 |
HTTP or HTTPS |
|
Zimbra |
Zimbra PIM Server |
80 or 443 |
HTTP or HTTPS |