Network Requirements
The xConnect Agent and Secure Gateway requires very minimal network configuration or firewall rules to be fully functional.
Some common industry standard ports that may be required to be open as below based on your use case.
Note
All rules mentioned below are OUTBOUND only. No Inbound firewall rules required.
Agent Network Access Requirements
These requirements outline the specific firewall policies that the agent needs to connect with the xConnect cloud services.
| Destination Port | Destination | Protocol | Encryption | Description |
|---|---|---|---|---|
| 443 | api.senecaxconnect.com | HTTPS | TLS | API for asset management and telemetry submission |
| 443 | rc.senecaxconnect.com | HTTPS (WSS) | TLS | API for remote command handling |
| 443 | download.senecaxconnect.com | HTTPS | TLS | Download repository for automatic updating of Agent |
| 22000-22999 | tube.senecaxconnect.com | TCP | AES 256 | Remote Desktop/Access services |
Bridge Network Access Requirements
These requirements outline the specific firewall policies that xConnect Bridge needs to connect with the xConnect cloud services.
Bridge host must have northbound and southbound network access
- Northbound - Route to internet (specifically, *.senecaxconnect.com)
- Southbound - Route to private network where devices being monitored are
| Destination Port | Destination | Protocol | Encryption | Description |
|---|---|---|---|---|
| 443 | api.senecaxconnect.com | HTTPS | TLS | API for asset management and telemetry submission |
| 443 | rc.senecaxconnect.com | HTTPS (WSS) | TLS | API for remote command handling |
| 443 | download.senecaxconnect.com | HTTPS | TLS | Download repository for automatic updating of Agent |
Agents are then configured to point to this bridge host for accessing xConnect cloud services.
Note
At this time Remote Desktop/Access features are not available for systems connecting to our cloud via an xConnect Bridge.