Description
Leostream relies on network access between the client, Gateway, Connection Broker and desktop. The following tables are provided for each Leostream component, and identify the possible network ports required between the Leostream component and other components in the environment.
A graphical representation of this information is also available in the Leostream documentation, including the Leostream Installation Guide, Administrator Guide and Scalability Guide. The Leostream documentation is available on the Leostream website in the Documentation Section.
| Leostream Gateway External Access | |||||
| Purpose | Source | Destination | Port | TCP | UDP |
| External HTTPS login and desktop offers to the client | Remote Client | Leostream Gateway | 443 | x | |
| External HTML5 Viewer protocol traffic to the client | Remote Client | Leostream Gateway | 443 | x | |
| External Remote Desktop Protocol (RDP) traffic | Remote Client | Leostream Gateway | 3389 | x | |
| External Remote Desktop Protocol RDP protocol traffic (proxied by Client IP) | Remote Client | Leostream Gateway | 3389 | x | |
| External HP Zcentral Remote Boost protocol traffic (proxied by Client IP) | Remote Client | Leostream Gateway | 42966 | x | x |
| External NoMachine protocol traffic (proxied by Client IP) | Remote Client | Leostream Gateway | 4000 | x | x |
| External MechdyneTGX protocol traffic (proxied by Client IP) | Remote Client | Leostream Gateway | 40001 | x | |
| External NICE DCV protocol traffic (proxied by Client IP) | Remote Client | Leostream Gateway | 8443 | x | |
| External Teradici PCoIP protocol traffic for Remote Workstation Cards | Remote PCoIP Client | Leostream Gateway | 4172 | x | x |
| External Teradici PCoIP setup traffic for Remote Workstation Cards | Remote PCoIP Client | Leostream Gateway | 50001-50002 | x | |
| External protocol proxied traffic along random port (RDP, RGS, NX, TGX, DCV) | Remote Client | Leostream Gateway | 20001-23000** | x | |
| ** Random Port support available for protocols with configurable ports |
| Leostream Gateway Internal Traffic | |||||
| Purpose | Source | Destination | Port | TCP | UDP |
| Internal login forward requests to the Connection Broker | Leostream Gateway | Leostream Connection Broker | 443 | x | |
| Internal HTML5 RDP Viewer protocol traffic | Leostream Gateway | Remote Desktop | 3389 | x | |
| Internal HTML5 VNC Viewer protocol traffic | Leostream Gateway | Remote Desktop | 5900** | x | |
| Internal HTML5 SSH Viewer protocol traffic | Leostream Gateway | Remote Desktop | 22 | x | |
| Internal Remote Desktop protocol traffic to the client | Leostream Gateway | Remote Desktop | 3389 | x | |
| Internal RDP protocol traffic | Leostream Gateway | Remote Desktop | 3389 | x | |
| Internal HP Zcentral Remote Boost protocol traffic to the client | Leostream Gateway | Remote Desktop | 42966 | x | x |
| Internal NoMachine protocol traffic | Leostream Gateway | Remote Desktop | 4000 | x | |
| Internal TGX 2.0 protocol traffic | Leostream Gateway | Remote Desktop | 40001 | x | x |
| Internal DCV protocol traffic | Leostream Gateway | Remote Desktop | 8443 | x | |
| Internal PCoIP protocol traffic | Leostream Gateway | Remote Desktop Hostcard | 4172 | x | x |
| ** VNC Port dependent on port used by VNC session |
Leostream Connection Broker Outbound Connections | |||||
| Purpose | Source | Destination | Port | TCP | UDP |
| Configure forwarding rules and desktop connections | Connection Broker | Leostream Gateway | 443 | x | |
| Leostream Agent action requests | Connection Broker | Leostream Agent | 8080** | x | |
| Event notification | Connection Broker | Syslog Server | 514 | x | |
| Event notification | Connection Broker | SNMP Server | 162 | x | |
| Database support | Connection Broker | PostgresSQL | 5432 | x | |
| Database support | Connection Broker | SQL Server Database | 1433 / 1434 | x | |
| Authentication | Connection Broker | RADIUS Server / MFA | 1812** | x | |
| Authentication | Connection Broker | LDAP Authentication | 389 / 636 | x | |
| Desktop Inventory | Connection Broker | HPE Moonshot | 22 | x | |
| Desktop Inventory | Connection Broker | Leostream Agent installed on Microsoft RDS / WVD | 8080** | x | |
| Desktop Inventory | Connection Broker | Scale Computing H3 Virtualization Platform | 443 | x | |
| Desktop Inventory | Connection Broker | VMware ESXi, vSphere, vCenter Server | 443 | x | |
| Desktop Inventory | Connection Broker | OpenStack Cloud | 5000 | x | |
| Desktop Inventory | Connection Broker | Amazon Web Services | 443 | x | |
| Desktop Inventory | Connection Broker | Microsoft Azure | 443 | x | |
| Desktop Inventory | Connection Broker | Google Cloud Platform | 443 | x | |
| Desktop Inventory | Connection Broker | Red Hat Virtualization | 443 | x | |
| Disconnect action requess sent to AWI | Connection Broker | PCoIP Zero client or Remote Workstation Card | 443 | x | |
| PCoIP communication | Connection Broker | PCoIP Connection Manager | 443 | x | |
| PCoIP client login and desktop offers to the client | Connection Broker | PCoIP Clients | 443 | x | |
| HTML5 Viewer protocol port check | Connection Broker | Remote Desktop | 3389 | x | |
| RDP protocol port check | Connection Broker | Remote Desktop | 3389 | x | |
| HP Zcentral Remote Boost protocol port check | Connection Broker | Remote Desktop | 42966 | x | x |
| NoMachine protocol port check | Connection Broker | Remote Desktop | 4000 | x | |
| TGX protocol port check | Connection Broker | Remote Desktop | 40001 | x | x |
| PCoIP protocol port check | Connection Broker | Remote Desktop - PCoIP CAS Agent | 60443** | x | |
| DCV protocol port check | Connection Broker | Remote Desktop | 8443 | x |
Note: Protocol port checks are used when Leostream powers on a machine to determine whether the protocol is running. The list of protocol ports used by Leostream for this check is determined by the enabled protocols in your Protocol Plans.
Leostream Connection Broker Inbound Connections | |||||
| Purpose | Source | Destination | Port | TCP | UDP |
| login forward requests from the Gateway | Leostream Gateway | Connection Broker | 443 | x | |
| Desktop registration and notification | Leostream Agent | Connection Broker | 443 | x | |
| Internal login and desktop offer requests | Leostream Connect | Connection Broker | 443 | x | |
| Internal login and desktop offer requests | Thin Clients | Connection Broker | 443 | x | |
| Internal login and desktop offer requests | Web Clients | Connection Broker | 443 | x | |
| PCoIP Cloud Access Software login and desktop offer requests | PCoIP Connection Manager | Connection Broker | 443 | x | |
| PCoIP Zero client event notification | PCoIP Zero Clients | Connection Broker | 514 | x | |
| PCoIP Remote Workstation Card event notification | PCoIP Remote Workstation Card | Connection Broker | 514 | x | |
| Leostream USB Ports | |||||
| Purpose | Source | Destination | Port | TCP | UDP |
| USB Device Redirection | Leostrea Connect USB Drivers | Leostream Agent USB Drivers | 20020 | x |
© Copyright 2023 Leostream Corporation