Blueprint Enterprise Network Ports

PORT

DIRECTION

NOTES

808 TCP

Inbound

Microsoft Windows Communications Foundation TCP/IP protocol

• Server to Server Communications (Analyst to Collector, Collector to Collector)

• Administrator to Server Communications

• 808 is used by the Administrator to the TaskMaster.  It is encrypted.  Anything the Administrator tool wants is pulled by TaskMaster service and given to Administrator over 808.

8080 TCP

Inbound

Microsoft Windows Communications Foundation HTTP protocol

• Server to Server Communications (Analyst to Collector, Collector to Collector)

• Administrator to Server Communications

• 8080 is how Collectors upload their transaction info and provide status update/health check info to the Analyst, and how the Analyst updates its own health check.

• Client to Server Communication (View waiting print jobs)

8081 TCP

Inbound

Microsoft .NET remoting protocol

• Server to Server Communications (Analyst to Collector, Collector to Collector)

• Administrator to Server Communications

• 8081 is for replicated data (e.g. terminals, users, devices, authentication scripts)

80 TCP

Inbound

SOAP protocols

• Client to Server Communication (data and settings)

7777 TCP

Inbound

Print Scout to Collector communications. Introduced in Blueprint 5.2 Service Pack 5.4. Only used for Print Scout Secure Release.

443 TCP

Inbound

SOAP protocols

• Client to Server Communication (data and settings)

Secure Release Here Workstation Release

• Terminal to Server Communication

• Terminal > EDI over 443 you will either be transmitting a card ID or an email address/pin

• EDI > Terminal you are passing job lists

• Print Scout > Collector over 443 you are transmitting XML job data, XML printer info, and update status/health check. job data will include, but is encrypted, username.

9072 TCP

Inbound

• Used by both the SR25 and SE35 terminal clients for configuration and communications.

• Used in a web browser to configure the Sentry Base environment.

9501 TCP

Inbound

Used by the Pharos Systems Site Monitor service for intraprocess controls and communications, as well as a communications endpoint for any deployed Site Monitor Agents. Present on the Blueprint Analyst server only.

9001 TCP

Inbound

Used for inter-server communications between the Pharos Systems Secure Release Service and the MobilePrint Worker service.

9000 TCP

Inbound

The Preton Saver client communicates with the Preton Coordinator service installed on the Blueprint Collector over this port for configuration, telemetry (health status) and job data upload.

9090 TCP

Inbound

The Preton Control management application communicates with the Preton Coordinator service installed on the Blueprint Collector over this port.

NOTE: This TCP port is already consumed by the MPS Proxy Service on newly-installed Blueprint 5.3 servers. During Preton Saver installation, this port will require modification.

50003 TCP

50004 TCP

Inbound

These ports are used as communications and configuration paths to the server-hosted Konica Minolta iMFP Service. TCP 50003 is the configuration and management port, while TCP 50004 is used for user interface delivery. NOTE: When installing the Konica Minolta iMFP Service on Blueprint 5.3 and later, please review the Knowledge Base article here for configuration requirements.

4321 TCP

Inbound

Inbound communications path between Sentry Print-managed devices and the Collector. Introduced with Blueprint Enterprise 5.3.

9090 TCP

Inbound

Internal communications path between the MPS Proxy Service (web service) and the MFP Site Service. This TCP port has the following exceptions:

• The “Toner Savings – Preton Control” application designates this port for service-based communications during installation, so specify an alternate port when installing the Preton software on a Collector.

• During installation of the Blueprint Collector software, there is a check to see if this port is already in use. If it is, it will increment by 1000 (so, if in use, it will try 10090, then 11090, etc.) until it finds an open port.

Introduced with Blueprint Enterprise 5.3.

50003 TCP

50004 TCP

50005 TCP

50006 TCP

Inbound

• Communications paths between the MFP Site Service and secured Konica Minolta devices.

• Introduced with Blueprint Enterprise 5.3.

1433 TCP

Outbound

• Default instance (MSSQLSERVER) will be assigned port 1433

• Named instance will be assigned a dynamic port (49152 through 65535)

1434 UDP

Outbound

Used only when the SQL Browser service is running. This service helps SQL clients identify available SQL Servers, but is not required for client > server communications.

636 TCP

Outbound

Used for non-Active Directory access to an LDAP-compatible directory services catalog. This channel is encrypted to prohibit credential capture.

389 TCP

Outbound

Used for non-Active Directory access to an LDAP-compatible directory services catalog. This channel passes credentials in clear text.

8050 TCP

Inbound

The default port for access to Hewlett-Packard's Web JetAdmin product.

7627 TCP

Outbound

The HP LaserJet device listens on this port to receive software deployments.

515 TCP

Outbound

Unix and Mac OS print services

9100 TCP

Outbound

Port on many print devices for the purposes of accepting print job data.

135 TCP

Inbound

Shared printer connections

161 UDP

Outbound

• This port is used when Device Status Checking is enabled for Secure Release Here operations

• Used by Site Monitor to obtain device data (asset information and meter data) during discovery and collection events

25 TCP

Outbound

Used by the Blueprint Analyst or Collector to send email (health alerts, quota notifications, delegate printing notifications, and scheduled reports) when configured to do so. TCP 25 is the default SMTP port; others could be used as well.

445 TCP

Inbound

Utilized by Windows clients to retrieve printer driver files when attaching to a server-shared print queue.

631 TCP

Outbound and

Inbound

• Used by the Pharos Universal Print Service. Introduced with Blueprint 5.3 Update 2.

• Used as the port when sending jobs via IPP/IPPS from Secure Release Here. Introduced with Blueprint 5.3.

51443 TCP

Outbound

Outbound communications port when securing a Ricoh device for Sentry Print.