---

hmc wrote:

Hello,

 

We have a 5.0.3 enterprise solution running on one dedicated server which has a access to the exchange 2007 server. All servers are behind the corporate firewall.

 

When i try to find information about what ports are being used i only find the usual 3101 and 4101 ports and the UDP ranges. When monitoring our BES application server which has the router configured i'm not seeing loads of connections on the mentioned port range, in fact i see connections on port 80 and 443 to blackberry servers.

 

When i run the bbrsptest.exe util i end up seeing the outgoing 3101 connection from that test so our security firewall rules are fine.

 

Also, the firewall log entries coming from our application server are less then the actual mail we recieve on our blackberry devices. When doing a test from lets say a hotmail account to my corporate email account i expect a firewall log entry going from the application server to the WAN, but that's not the case, yet we do recieve the mail on our devices..

 

Could someone give me some insights about the communications of the BES to the outside world? Looking at the BES schematics that can be found it suggests all communications to blackberry devices are coming from the bes application server itself, but i'm not seeing half of it.

 

thanks.

 

L

 

 

---

BES only uses port 3101 to RIM NOC for all corporate email, sync, etc. its like a VPN tunnel and you wont see anything in it.

it might use 80 and 443 for some updates that happen every hour or so. it is not needed to have these ports open but some day you will need them updated when a new device is released.

even though you monitor the firewall, the data being sent is via the 3010 port encrypted and also compressed more than SMTP would ever do, you might even see a 1 meg email squished to 1k on teh device until it needs more data like to download pictures or a file.