- CrackBerry Newbie
- 2 Posts
BES 10 Server managing IOS / Android
If we deploy BES behind the firewall can we manage IOS and Android devices via the blackberry network or must we put a hole in our Firewall? I keep getting diffrent answers on this. i we can use Blackberry's network can the phone use it for ActiveSync traffic also ?
- 02-04-13, 05:50 AM #2
The BDS component for BB10 devices only needs an outbound TCP port 3101 connection (like BES5).
UDS for iOS/Android is different. The Communication Module needs a publically accessible DNS name, and have a number of ports open. It can be installed on a separate server in a DMZ for this reason.
It requires TCP port 443 in and outbound (for both Android and iOS). Outbound TCP 2195 and 5223 for Apple Push Notification Service. Outbound port 80 & 443 for the Apple Root Certification Authority.
If you put the Communication module in the DMZ there is a separate set of ports to go between that server and the UDS server in the main network.
- 05-08-13, 11:44 AM #5
- 05-09-13, 11:46 AM #7
Between my DMZ server and my internal UDS server I have ports 8081, 8082, and 8083 open in both directions. I'm having trouble getting my Apple Push Notification traffic to work. Am I missing any ports between the DMZ and UDS core and in with direction should they be open?
Or is BES 10.1 really close? If it is I could wait for that to make everything simpler before trying to get UDS working for iOS, it works for Android as it is.
Thanks in advance.
Posted via CB10
- 05-10-13, 08:43 PM #8
BES 10.1 is really close as it hit gold release candidate, and the version we are running is very solid.
My suggestion is to wait a week or to if you can and hopefully save yourself some unnecessary headaches (hopefully) .
Posted via CB10
- 05-10-13, 10:34 PM #9
That's good to know as I really need the BES10.1 upgrade for the extra IT policies so I can start my live Z10 and Q10 roll out. Not quite enough granularity in there right now for our secure environment. Hoping my carrier doesn't sit on OS10.1 much longer either.
I actually fixed my APNs problem on UDS this evening and have been torture testing an iToy since with activating, wiping, reactivating and trying out all the policies. It was a traffic direction configuration error between my external firewall and Apple in the end, not the internal ports. A diagram in another thread here that is far better than the one in the UDS install guide helped me out a lot.
Very impressed with the control over the iOS devices compared to my experiments with a Samsung Galaxy Tab which were very disappointing. On the Samsung I saw unreliable lock, password and wipe control and no EAS profile control without buying the Touchdown app on the device. Not good. Really hope 10.1 brings Samsung support with it, they are the major player, forget Motorola. If not maybe BES10.x could control the Samsung Knox security features in futute?
Posted via CB10
- By xelsed in forum BlackBerry 10 OSReplies: 0Last Post: 02-02-13, 07:22 PM
- By nkouts in forum General BlackBerry DiscussionReplies: 3Last Post: 04-02-12, 05:02 PM
- By biff_on in forum General BlackBerry DiscussionReplies: 1Last Post: 10-02-08, 08:33 PM
- By mwatts in forum IntroductionsReplies: 2Last Post: 03-27-08, 06:27 AM
- By capitalist in forum BlackBerry Pearl 81xxReplies: 3Last Post: 03-25-08, 08:47 AM