Network Ports
A full installation of SOTI Connect uses many ports for communication. The installer add rules to the Windows Firewall as necessary. If you have other network security configurations, you might need to open more required ports for SOTI Connect to communicate sucessfully.
Note: All ports listed on this page are default ports.
This page features four main categories of network ports:
- Essential SOTI Connect ports
- Mandatory and optional ports used by third-party entities to communicate with SOTI Connect (for example, SQL Server)
- Mandatory ports for third-party gateways such as Honeywell Cloud Connect and simulators
- Other ports internally used by third-party entities, which might be helpful for troubleshooting purposes
SOTI Connect System Component Ports
The following network ports are essential for the basic installation and operation of SOTI Connect:
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Logging Service | Logging Service | Each SOTI Connect component |
On-premises Cloud SOTI Connect Server |
HTTPS | 1234 |
| Management Server | Management Service ( Secure Raw Socket) | On-premises or Cloud, SOTI Connect Protocol Adapter |
On-premises Cloud SOTI Connect Server |
SRS (Secure Raw Socket) | 4649 |
| Webhook Receiver | Webhook Receiver that exists within Protocol Adapters (for 3rd party events using HTTP) | 3rd party servers and devices |
On-premises Cloud SOTI Connect Protocol Adapter |
HTTP | 5551 |
| File Store | File Store | 3rd party servers and devices, Protocol Adapters and MS |
On-premises Cloud SOTI Connect File Store |
HTTPS | 4646 |
| File Store Service | For SOTI Connect File Store Root Certificate Public Key | Printer FQDN or IP Address |
On-premises Cloud SOTI Connect File Store |
HTTP | 4650 |
| Management Server Cluster Communication | Management Service Cluster | On-premises/Cloud SOTI Connect Server, Management Service (Secondary) |
On-premises Cloud SOTI Connect Server Management Service (Primary) |
SRS (Secure Raw Socket) | 4651 |
Mandatory Ports used by Third-Party Entities to Communicate with SOTI Connect
Third-party applications (such as SQL Server) require the following network ports to communicate with SOTI Connect:
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Management Server Mandatory |
License registration, Announcements, SMS Alerts | SOTI Connect Server | Cloud SOTI
Services
|
HTTPS | 443 |
| Management Server, Logging
Service Mandatory |
SQL Server Database Engine | SOTI Connect Server |
On-premises Cloud SQL Server 2017+ |
TCP | 1433 |
| MQTT Server
Mandatory for MQTT/ MQTT RPC devices |
Publish/ Subscribe Status & Request Messages |
On-premises/ Cloud SOTI Connect Protocol Adapter Printer FQDN or IP Address |
On-premises/ Cloud MQTT Server | MQTT, MQTTS | 1883, 8883 |
| MQTT over Secure Web Socket Mandatory for MQTT/ MQTT RPC devices |
WSS (Web Socket Secure) | 443 | |||
| Honeywell Cloud Connect API Info Service | HCC API Info Service | On-premises/ Cloud SOTI Connect REST Protocol Adapter | On-premises/ Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21219 |
| Brother Device Conductor Service -Agent Connection | Printer onboarding onto Device Conductor using Agent Connection | On-premises Device Conductor Agent (REST PA) | On-premises/ Cloud Device Conductor | HTTPS | 49500 |
| EPSON PIC Web Access | Printer Embedded Web Browser by IP or FQDN | On-premises Browser | Printer FQDN/ IP Address | HTTP, HTTPS | 443 |
Restriction: SOTI Connect
and SOTI MobiControl both require the use of port 443. Because of
this, you cannot install both products on the same machine.
User-Configurable Optional Components
The following optional components' ports are user-configurable in the SOTI Connect user interface:
- Management server for certificate authentication (SOTI Identity [identity.soti.net])
- Registry service
- Syslog server
- Proxy server
- Slack server
- Email server
Optional SOTI Connect Device Simulators
Optional device simulators require the following network ports to communicate with SOTI Connect:
| Service | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|
| Simulator - GenericThermal | SOTI Connect Server | Printer FQDN or IP Address | HTTP | 5682 |
| Simulator - Hue | SOTI Connect Server | Printer FQDN or IP Address | HTTP | 4611 |
| Simulator - MQTT Printer | Printer FQDN or IP Address | On-premises/Cloud MQTT Server | MQTT, MQTTS | 1883/ 8883 |
| Simulator - MQTT RPC | Printer FQDN or IP Address | On-premises/Cloud MQTT Server | MQTT, MQTTS | 1883/ 8883 |
| Simulator - SATO | SOTI Connect Server | Printer FQDN or IP Address | HTTP | 5681 |
SOTI Connect Registry Server Ports
The Device Registry server uses the following ports internally:
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Registry Service | For Auto Registration of printer (using mutual TLS certificate auth) | Printer FQDN or IP Address | On-premises/ Cloud SOTI Connect Registry Service | HTTPS | 5001 |
| Registry Service | To access database with local account using SQL Server Authentication and as DB_OWNER | On-premises/ Cloud SOTI Connect Registry Service | On-premises/ Cloud SQL Server 2017+ | TCP | 1433 |
SOTI Connect REST Protocol Adapter Ports
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Logging Service | Logging Service | On-premises/ Cloud SOTI Connect Protocol Adapter | On-premises/ Cloud SOTI Connect Server | HTTPS | 1234 |
| Management Server | Management Service ( Secure Raw Socket) | On-premises/ Cloud SOTI Connect Protocol Adapter | On-premises/ Cloud SOTI Connect Server | SRS (Secure Raw Socket) | 4649 |
| Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | On-premises/ Cloud OEM REST Gateways | On-premises/ Cloud SOTI Connect Protocol Adapter | HTTPS | 5551 |
SOTI Connect MQTT Protocol Adapter Ports
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Logging Service | Logging Service | On-premises/ Cloud SOTI Connect Protocol Adapter | On-premises/ Cloud SOTI Connect Server | HTTPS | 1234 |
| Management Server | Management Service (Secure Raw Socket) | On-premises/ Cloud SOTI Connect Protocol Adapter | On-premises/ Cloud SOTI Connect Server | SRS (Secure Raw Socket) | 4649 |
Zebra SNMP Printers Network Ports
| Service | Purpose | Source | Destination | Protocol | Port(s) |
|---|---|---|---|---|---|
| SNMP Requests | UDP Requests to discover printers | On-premise VM SOTI Connect Protocol Adapter |
Corporate Network that the Protocol Adapter is running on | UDP | 161 |
| SNMP Traps | UDP Responses from printers | Zebra printers on Corporate Network that the Protocol Adapter is running on | On-premise VM SOTI Connect Protocol Adapter |
UDP | 162 |
Important: Zebra SNMP printers requires UDP
9100.
Honeywell Cloud Connect (HCC) Ports
Honeywell Cloud Connect uses the following ports internally:
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| SOTI Connect File Store | For File Store Updates (Firmware and other supported files) | On-premises/ Cloud Honeywell Cloud Connect (HCC) | On-premises/ Cloud SOTI Connect Server | HTTPS | 4646 |
| MQTT Service | For Printer Alerts and Responses with Honeywell HCC Mosquitto MQTT Broker | Printer FQDN/ IP Address | On-premises/ Cloud Honeywell Cloud Connect (HCC) | MQTTS | 8883 |
| HCC Enrollment Service | HCC Enrollment Service | Printer FQDN/ IP Address | On-premises/ Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21210 |
| HCC Telemetry Service | HCC Telemetry Service | Printer FQDN/ IP Address | On-premises/ Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21211 |
| HCC Event Service | HCC Event Service | Printer FQDN/ IP Address | On-premises/ Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21212 |
| HCC Asset Management Service | HCC Asset Management Service | Printer FQDN/ IP Address | On-premises/ Cloud Honeywell Cloud Connect (HCC) | HTTPS | 21213 |
| HCC Operational Intelligence (if utilized) | HCC Operational Intelligence (if utilized) | On-premises/ Cloud Honeywell Cloud Connect (HCC) | Sentience Platform (via Multiple URLs) | HTTPS | 21215 |
| Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | Printer FQDN/ IP Address | On-premises or Cloud SOTI Connect Protocol Adapter | HTTPS | 5551 |
Brother Device Conductor Ports
Brother Device Conductor uses the following ports internally:
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Web Access | Printer Embedded Web Browser by IP or FQDN | On-premises Browser | Printer FQDN or IP Address | HTTP, HTTPS | 80, 443 |
| Device Conductor Service | Printer onboarding onto Device Conductor using Direct Connection | Printer FQDN/ IP Address | On-premises/Cloud Device Conductor | HTTPS | 49500 |
| Device Conductor Service -Agent Connection | Unicast/Multicast Printer Discovery by Device Conductor Agent | On-premises Device Conductor Agent | Printer FQDN/ IP Address | UDP | 49501 |
| SOTI Connect File Store | For File Store Updates (Firmware and other supported files) | Printer FQDN/ IP Address | Cloud SOTI Connect Server | HTTPS | 4646 |
| Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | Printer FQDN/ IP Address | On-premises/ Cloud SOTI Connect Protocol Adapter | HTTPS | 5551 |
EPSON PIC Ports
EPSON PIC uses the following ports internally:
| Service | Purpose | Source | Destination | Protocol | TCP Port(s) |
|---|---|---|---|---|---|
| Web AccessEssential one | Printer Embedded Web Browser by IP or FQDN | On-premises Browser | Printer FQDN/ IP Address | HTTP, HTTPS | 80, 443 |
| Epson Printer Information Collector | UDP broadcast and ENPC monitoring, ESC/POS commands | On-premises Epson PIC | Printer FQDN/ IP Address | UDP | 3289 |
| Epson Printer Information Collector | UDP broadcast and ENPC monitoring, ESC/POS commands | On-premises Epson PIC | Printer FQDN/ IP Address | TCP | 9100 |
| Printer Enrollment and Management | Communication with Epson PIC | On-premises SOTI Connect Protocol Adapter | On-premises Epson PIC | HTTPS | 8043 |
| SOTI Connect File Store | For File Store Updates (Firmware and other supported files) | Printer FQDN or IP Address | Cloud SOTI Connect Server | HTTPS | 4646 |
| Webhook Receiver | Webhook Receiver (for 3rd party events using HTTPS) | Printer FQDN or IP Address | On-premises SOTI Connect Protocol Adapter | HTTPS | 5551 |