Which ports need to be allowed in my firewall for Aspera reverse proxy with load balancing of nodes?

Overview

When using an Aspera FASP Proxy, you must ensure that your internal firewalls are allowing all the necessary UDP connections to pass through.

For an Aspera reverse proxy, which allows traffic from outside network firewalls to reach servers inside the firewall, you need to ensure your firewall rules between the outside client and the proxy, and the proxy and your nodes allow the correct number of UDP ports, particularly when you have several load balanced nodes behind the firewall.

Ports to allow

For Linux nodes, you will need to open the following ports in your firewalls:

  • 33001 to (33000 + # of Linux nodes)

So if you have 2 load balanced Linux nodes in your internal network, your firewalls must allow UDP traffic on both 33001 and 33002. If you had 3 load balanced Linux nodes, your firewalls must allow UDP traffic on 33001, 33002 and 33003.

For Windows nodes, you will need to open the following ports in your firewalls:

  • 33001 to (33000 + # of concurrent connections)

Windows systems don't support port reuse, so you will need to base the amount of ports to open on the amount of concurrent connections (simultaneous transfers) you expect to occur. For example, f you expect at most 3 transfers to happen simultaneously at any given time, you should open 33001, 33002 and 33003.

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.
Powered by Zendesk