Network Ports
A full installation of SOTI Connect uses many ports for communication. The installer will add rules to the Windows Firewall as necessary. In case you have additional network security, be aware that you might need to open additional ports for SOTI Connect to communicate properly.
- Essential SOTI Connect ports
- Mandatory and optional ports used by third-party entities to communicate with Connect (for example, SQL Server).
- Mandatory ports for third-party gateways such as Honeywell Cloud Connect, and simulators.
- Additional ports that are used only internally in third-party entities, which might be useful for troubleshooting purposes.
SOTI Connect System Component Ports
The following network ports are essential for the basic installation and operation of SOTI Connect:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Logging Service | Logging Service | Each SOTI Connect component |
On-premise Cloud SOTI Connect Server |
HTTPS | 1234 |
Management Server | Management Service ( Secure Raw Socket) | On-premise or Cloud, SOTI Connect Protocol Adapter |
On-premise Cloud SOTI Connect Server |
SRS (Secure Raw Socket) | 4649 |
Webhook Receiver | Webhook Receiver that exists within Protocol Adapters (for 3rd party events using HTTP) | 3rd party servers and devices |
On-premise Cloud SOTI Connect Protocol Adapter |
HTTP | 5551 |
File Store | File Store | 3rd party servers and devices, Protocol Adapters and MS |
On-premise Cloud SOTI Connect File Store |
HTTPS | 4646 |
File Store Service | For Connect Root Certificate Public Key File Store | Printer FQDN or IP Address |
On-premise Cloud SOTI Connect File Store |
HTTP | 4650 |
Management Server Cluster Communication | Management Service Cluster | On-premise/Cloud, SOTI Connect Server, Management Service (Secondary) |
On-premise Cloud SOTI Connect Server Management Service (Primary) |
SRS (Secure Raw Socket) | 4651 |
Mandatory Ports used by Third-Party Entities to Communicate with SOTI Connect
The following network ports are required for third-party applications (such as SQL Server) to communicate with SOTI Connect:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Management Server Mandatory |
License registration, Announcements, SMS Alerts | SOTI Connect Server | Cloud SOTI
Services
|
HTTPS | 443 |
Management Server, Logging
Service Mandatory |
SQL Server Database Engine | SOTI Connect Server |
On-premise Cloud SQL Server 2017+ |
TCP | 1433 |
MQTT Server
Mandatory for MQTT/ MQTT RPC devices |
Publish/Subscribe Status & Request Messages |
On-premise/Cloud SOTI Connect Protocol Adapter Printer FQDN or IP Address |
On-premise/Cloud MQTT Server | MQTT,MQTTS | 1883,8883 |
MQTT over Secure Web Socket Mandatory for MQTT/ MQTT RPC devices |
WSS (Web Socket Secure) | 443 | |||
Honeywell Cloud Connect API Info Service | HCC API Info Service | On-premise/Cloud SOTI Connect REST Protocol Adapter | On-premise/Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21219 |
Brother Device Conductor Service -Agent Connection | Printer onboarding onto Device Conductor using Agent Connection | On-premise Device Conductor Agent (REST PA) | On-premise/CloudDevice Conductor | HTTPS | 49500 |
EPSON PIC Web Access | Printer Embedded Web Browser by IP or FQDN | On-premise Browser | Printer FQDN/IP Address | HTTP,HTTPS | 443 |
User-Configurable Optional Components
The following optional components' ports are user-configurable in the SOTI Connect user interface:
- Management server for certificate authentication (SOTI Identity [identity.soti.net])
- Registry service
- Syslog server
- Proxy server
- Slack server
- Email server
Optional SOTI Connect Device Simulators
The following network ports are required for optional device simulators to communicate with SOTI Connect:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Simulator - GenericThermal | 5682 | ||||
Simulator - Homecomfort | 4610 | ||||
Simulator - Hue | 4611 | ||||
Simulator MQTT Printer/MQTT Sensor/Zebra | 1883/8883 | ||||
Simulator - SATO | 5681 |
Additional SOTI Connect Registry Server Ports
The following ports are used internally by the Device Registry server:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Registry Service | For Auto Registration of printer (using mutual TLS certificate auth) | Printer FQDN or IP Address | On-premise/Cloud SOTI Connect Registry Service | HTTPS | 5001 |
Registry Service | To access database with local account using SQL Server Authentication and as DB_OWNER | On-premise/Cloud SOTI Connect Registry Service | On-premise/Cloud SQL Server 2017+ | TCP | 1433 |
Additional SOTI Connect REST Protocol Adapter Ports
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Logging Service | Logging Service | On-premise/Cloud SOTI Connect Protocol Adapter | On-premise/Cloud SOTI Connect Server | HTTPS | 1234 |
Management Server | Management Service ( Secure Raw Socket) | On-premise/Cloud SOTI Connect Protocol Adapter | On-premise/Cloud SOTI Connect Server | SRS (Secure Raw Socket) | 4649 |
Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | On-premise/Cloud OEM REST Gateways | On-premise/Cloud SOTI Connect Protocol Adapter | HTTPS | 5551 |
Additional SOTI Connect MQTT Protocol Adapter Ports
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Logging Service | Logging Service | On-premise/Cloud SOTI Connect Protocol Adapter | On-premise/Cloud SOTI Connect Server | HTTPS | 1234 |
Management Server | Management Service (Secure Raw Socket) | On-premise/Cloud SOTI Connect Protocol Adapter | On-premise/Cloud SOTI Connect Server | SRS (Secure Raw Socket) | 4649 |
Additional Honeywell Cloud Connect (HCC) Ports
The following ports are used internally by Honeywell Cloud Connect:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
SOTI Connect File Store | For File Store Updates (Firmware and other supported files) | On-premise/Cloud Honeywell Cloud Connect (HCC) | On-premise/Cloud SOTI Connect Server | HTTPS | 443 |
MQTT Service | For Printer Alerts and Responses with Honeywell HCC Mosquitto MQTT Broker | Printer FQDN/IP Address | On-premise/Cloud Honeywell Cloud Connect (HCC) | MQTTS | 8883 |
HCC Enrollment Service | HCC Enrollment Service | Printer FQDN/IP Address | On-premise/Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21210 |
HCC Telemetry Service | HCC Telemetry Service | Printer FQDN/IP Address | On-premise/Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21211 |
HCC Event Service | HCC Event Service | Printer FQDN/IP Address | On-premise/Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21212 |
HCC Asset Management Service | HCC Asset Management Service | Printer FQDN/IP Address | On-premise/Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21213 |
HCC Operational Intelligence (if utilized) | HCC Operational Intelligence (if utilized) | On-premise/Cloud Honeywell Cloud Connect (HCC) | Sentience Platform (via Multiple URLs) | HTTPS | 21215 |
Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | Printer FQDN/IP Address | On-premise or Cloud SOTI Connect Protocol Adapter | HTTPS | 5551 |
Additional Brother Device Conductor Ports
The following ports are used internally by Brother Device Conductor:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Web Access | Printer Embedded Web Browser by IP or FQDN | On-premise Browser | Printer FQDN or IP Address | HTTP,HTTPS | 80,443 |
Device Conductor Service | Printer onboarding onto Device Conductor using Direct Connection | Printer FQDN/IP Address | On-premise/Cloud Device Conductor | HTTPS | 49500 |
Device Conductor Service -Agent Connection | Unicast/Multicast Printer Discovery by Device Conductor Agent | On-premiseDevice Conductor Agent | Printer FQDN/IP Address | UDP | 49501 |
SOTI Connect File Store | For File Store Updates(Firmware and other supported files) | PrinterFQDN/IP Address | Cloud SOTI Connect Server | HTTPS | 4646 |
Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | Printer FQDN/IP Address | On-premise/Cloud SOTI Connect Protocol Adapter | HTTPS | 5551 |
Additional EPSON PIC Ports
The following ports are used internally by EPSON PIC:
Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
---|---|---|---|---|---|
Web AccessEssential one | Printer Embedded Web Browser by IP or FQDN | On-premise Browser | Printer FQDN/IP Address | HTTP,HTTPS | 80,443 |
Epson Printer Information Collector | UDP broadcast and ENPC monitoring,ESC/POS commands | On-premise Epson PIC | Printer FQDN/IP Address | UDP | 3289 |
Epson Printer Information Collector | UDP broadcast and ENPC monitoring,ESC/POS commands | On-premise Epson PIC | Printer FQDN/IP Address | TCP | 9100 |
Printer Enrollment and Management | Communication with Epson PIC | On-premise SOTI Connect Protocol Adapter | On-premise Epson PIC | HTTPS | 8043 |
SOTI Connect File Store | For File Store Updates (Firmware and other supported files) | Printer FQDN or IP Address | Cloud SOTI Connect Server | HTTPS | 443 |
Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | Printer FQDN or IP Address | On-premise SOTI Connect Protocol Adapter | HTTPS | 5551 |