Adding correct ports in AWS Security Group for ensuring proper communication
Security-as-a-Service for Amazon Web Services by Bitdefender is a security solution designed for cloud infrastructures and integrated with GZ Cloud Console. An innovative and comprehensive solution, Security-as-a-Service for AWS protects Amazon EC2 instances running Windows or Linux operating systems.
This article is listing the ports that you will need to add in Amazon Security Groups for ensuring proper communication between BEST, Security Servers and the Security Console.
Amazon EC2 security groups must allow inbound access to SSH and RDP during the BEST installation on instances. If you run firewall software on your instances, make sure to configure it to allow access to all of the previously specified ports.
|SSH (22)||Port used to access instances running on Linux.|
|RDP (3389)||Port used to access instances running on Windows.|
|443||Communication port between Silent Agent and Security Console.|
|7081 / 7083 (SSL)||Communication port between BEST and the scan daemon running on the Security Server hosted in the corresponding AWS region.|
|80 / 7074 (Relay)||Communication ports used by BEST for updates.|
The ports must be added also by users that have VPC instances in Amazon Web Services. Our recommendation is to add 0.0.0.0/0 as a source address but, if you require to allow traffic only for specific IP addresses, please contact Bitdefender customer support.