|
Internet/CD Compliance |
Firewalls |
| This software should work fine behind certain types of firewalls. For others, some slight changes may be required. |
| For basic NAT type firewalls such as Home Cable/DSL Routers, no
modifications should be necessary. The major requirement is that the firewall must
allow outbound traffic on TCP Port 1218, the AeroFlight-ADS port assigned to AeroFlight
Tech Data by the Internet Assigned Numbers Authority: http://www.isi.edu/in-notes/iana/assignments/port-numbers Most of the basic NAT type firewalls normally allow all outbound traffic and achieve their security by blocking attempts to access computers from the internet side. The AeroFlight AD Internet Compliance software only requires the outbound access and not the inbound access. |
| However, on some more advanced firewalls, many of the services are automatically blocked. Furthermore, they act as an intermediate relay for your connection. In such cases, your computer cannot connect directly to the AeroFlight AD Compliance Server. Instead, it must connect to the firewall. In turn, the firewall connects to the AeroFlight AD Compliance Server. For this situation, several changes must be made. |
| First, the firewall must be configured to pass the traffic through. It needs to accept connections on TCP port 1218 on the internal network and pass these connections to TCP port 1218 on the AeroFlight AD Compliance Server, compliance.aftd.com. |
| Second, the AeroFlight Internet Compliance software must be configured to send the traffic to the firewall instead of the Compliance Server. You will need to know either the name of the firewall computer or its' IP address. In the Compliance |
|
| In the Database Location initialization dialog box, click the Alternate Database radio button and under Computer Name, enter the name or the ip address of your firewall. For example, if your fireall is firewall.example.com, you would enter it in the box. In some cases, the firewall may not have a name or the name may not be accessible to your computer. Then you would insert the IP address instead. For example, if the firewall has an internal IP address of 192.168.1.1, you would enter 192.168.1.1 in the Computer Name edit box: |
|
| In most circumstances, if you have this kind of firewall, you will have personnel dedicated to properly administering it. They should be able to set up the firewall to allow this traffic. |
| If you need any assistance with this, please contact support@aftd.com or eric@aftd.com. |
