You are viewing limited content. For full access, please sign in.

Question

Question

Does Port 80 have to be open to use WebAccess?

Web Client
Updated April 28, 2014
asked on April 28, 2014

 I have a customer that wants to use WebAccess (they're small) to access Laserfiche from outside their network.  Their IT Company has 

opened ports 5050 and 5051 in the firewall,  forwarded them to the Laserfiche server.  They don't want to open Port 80...is this necessary if the above have already been opened?  If so, what else might they do.  Also, is there anything else that needs to be done to simply gain access to Laserfiche through WebAccess outside of their network other than opening up the mentioned ports?

 

Thanks!

 

 

0 0

Answer

SELECTED ANSWER
replied on April 28, 2014 Show version history

It sounds like you users can already successfully use that instance of Web Access internally. If that's the case, then you shouldn't need to make any changes to the firewall/port configuration for the Laserfiche Server because Web Access and the Laserfiche Server can already communicate.

 

To just open Web Access up to users outside the firewall, you do need to change the firewall/port configuration for Web Access.

 

By default, Web Access is installed to the Default Website, which has a default port of 80 for non-SSL traffic and port 443 for SSL-encrypted traffic. You can change the port used by the Default Website (or whatever website Web Access is running on), then open whatever port you have changed it to.

 

Edit: Note that then the URL for your Web Access instance would change from http://yourWAServerName/laserfiche to, for example, http://yourWAServerName:81/laserfiche if you changed the port number to 81.

1 0

Replies

replied on April 28, 2014

If Web Access and the Laserfiche server are both inside the firewall, you don't need to open up ports 5050 and 5051.

1 0
replied on April 28, 2014

You should probably take a look at the Admin Help for Web Access that explains that type of Firewall configurations. It refers to different configurations and ports.

 

In short, "By default, the Laserfiche Server listens on TCP port 80. The Laserfiche Server broadcasts notifications on port 5051. If there is a firewall between your Laserfiche Server instance and your Web Access server, make sure that ports 80 and 5051 are open on the firewall. You can use the Server Settings node of the Laserfiche Administration Console to modify the default port settings."

 

So if you want to use a different port than port 80, you would need to make the change accordingly.

0 0
replied on April 28, 2014

I read that which is why I posted the question on here.  The IT Company is saying that Opening Port 80 poses a risk to their network...so my question is do we simply change the Port it's using in the Admin Console to a port that's not being used by anything else and IS NOT 80...or are we going to encounter issues by simply making that change?  I don't want to make that change and then have it break everything else that is currently working.  Laserfiche Server and WebAccess are both installed on the same server.

0 0
replied on April 28, 2014 Show version history

If I remember correctly, you would need to change the port that the Laserfiche client is using on each machine since it scans port 80 by default. If you are pushing the client out using group policy I believe you can change the port there. If you are not using the Laserfiche client at all and just Web Access, then it would only need to be set in the Web Access configuration.

 

I also believe that any other program trying to connect to the Laserfiche Server though would need to be altered as well to communicate on that specific port.

 

If they are worried about keeping the network secure, you can use an SSL connection. I would hope that would put to rest their security concerns. This is a link on Using SSL/TLS with Laserfiche.

0 0
replied on April 28, 2014

You'll need to better understand their concerns about the risk if you want to come to an acceptable compromise.  You can change the port number as Blake has described, but if their concern is about the HTTP protocol that doesn't really change anything.  Switching to SSL will encrypt the data but again that might not address their concern.

SELECTED ANSWER
replied on April 28, 2014 Show version history

It sounds like you users can already successfully use that instance of Web Access internally. If that's the case, then you shouldn't need to make any changes to the firewall/port configuration for the Laserfiche Server because Web Access and the Laserfiche Server can already communicate.

 

To just open Web Access up to users outside the firewall, you do need to change the firewall/port configuration for Web Access.

 

By default, Web Access is installed to the Default Website, which has a default port of 80 for non-SSL traffic and port 443 for SSL-encrypted traffic. You can change the port used by the Default Website (or whatever website Web Access is running on), then open whatever port you have changed it to.

 

Edit: Note that then the URL for your Web Access instance would change from http://yourWAServerName/laserfiche to, for example, http://yourWAServerName:81/laserfiche if you changed the port number to 81.

1 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...