How to set up the firewall for the local RADIUS instance to connect to Portnox Cloud
In this topic, you will learn how to configure your firewall to make sure that the local RADIUS instance can communicate with the cloud RADIUS instances.
You need to open the following ports on your firewall:
FQDN | Protocol | Ports | Direction |
---|---|---|---|
radius.portnox.com | TCP | 443 | Outbound |
rad-events-clear-prod-eastus.servicebus.windows.net | TCP | 443 | Outbound |
rad-events-clear-prod-westeu.servicebus.windows.net | TCP | 443 | Outbound |
devices-ingress-clear-prod-eastus.servicebus.windows.net | TCP | 443 | Outbound |
devices-ingress-clear-prod-westeu.servicebus.windows.net | TCP | 443 | Outbound |
cloudcentraalstoreprodus.blob.core.windows.net | TCP | 443 | Outbound |
cloudcentraalstoreprod.blob.core.windows.net | TCP | 443 | Outbound |
pnxeusprdclrinstallers.blob.core.windows.net | TCP | 443 | Outbound |
pnxweuprdclrinstallers.blob.core.windows.net | TCP | 443 | Outbound |
logs-consolidation-prod-eastus.servicebus.windows.net | TCP | 443 | Outbound |
logs-consolidation-prod-westeu.servicebus.windows.net | TCP | 443 | Outbound |
Note: These rules are relevant for local RADIUS revision 1.1.8 and above.
Note: Since Microsoft services can change their public IP addresses, we recommend not to use static IP addresses, and instead use
FQDNs only.