Firewall settings for the BMS Platform and MP Server
If you run the BMS Platform behind a firewall you might need to open specific ports so that the server can be reached from the outside. This article explains different communication paths of each application protocol.
Common mistake at Windows firewall settings: Rules not applied to all profiles
Windows Firewall distinguishes three network profiles: Domain, Private, and Public. When creating a firewall rule, it is often only enabled for Domain and Private by default.
When creating or editing a firewall rule, make sure all three profiles are enabled, so include the Public profile.
Accessing BMS Platform Server and Web Manager (does not affect MP Server)
Application protocol | Protocol | Default port | Direction | Configuration |
|---|---|---|---|---|
VNET (Secure Connection) | TCP | 14532 | inbound | Core Studio -> Server -> Server Configuration -> VNET.NetworkSSLPortNumber |
Web Manager (Secure Connection) | TCP | 21001 | inbound | Secure connection |
Web Manager | TCP | 21000 | inbound | Standard connection |
Web Visualization, Vision app (Secure Connection) | TCP | 443 | inbound | Secure connection |
Web Visualization, Vision app | TCP | 80 | inbound | Standard connection |
Accessing Core Studio through 3rd party management clients
Application protocol | Protocol | Default port | Direction | Configuration |
|---|---|---|---|---|
OPC DA | TCP, UDP | 135 | inbound, outbound | See this article for full DCOM configuration details |
OPC UA | TCP | 48400, 48401 | inbound | Core Studio -> Modules -> OPCUA -> OPC UA configuration -> xio.OPCUA.LocalTCPPort + xio.OPCUA.LocalHTTPPort |
BACnet | UDP | 47808 | inbound, outbound | Core Studio -> BACnet -> Driver Configuration -> BACnet.Port |
Access to field level devices
Application protocol | Protocol | Default port | direction | Configuration |
|---|---|---|---|---|
KNXnet/IP device | UDP | 3671, 20147 | inbound, outbound | Core Studio -> KNX -> KNX Gateway Definitions -> Port The NETx Server locally uses UDP port 20147 to contact KNXnet/IP devices |
BACnet | UDP | 47808 | inbound, outbound | Core Studio -> BACnet -> Driver Configuration -> BACnet.Port |
Modbus TCP | TCP | 502 | outbound | Core Studio -> Modbus -> Modbus Device Definitions -> Port |
Modbus RTU | TCP, UDP | No default | outbound | Core Studio -> Modbus -> Modbus Device Definitions -> Port |
SNMP Polling | UDP | 161 | inbound, outbound | Core Studio -> SNMP -> SNMP Device Definitions -> Port |
SNMP Traps | UDP | 162 | inbound | Core Studio -> SNMP -> Traps -> Listener definitions -> Port |
Fidelio/Opera | TCP | 5003 | inbound | Core Studio -> Modules -> Fidelio/Opera Interface -> Driver Configuration -> FIDELIO.Port |
Kaba | TCP | 6005 | inbound | Core Studio -> Modules -> Kaba -> Driver Configuration -> xio.Kaba.LocalPort |
VingCard | TCP | 4000 | inbound | Core Studio -> Modules -> VingCard -> Driver Configuration -> xio.VingCard.LocalPort |
Salto | TCP | 6000 | inbound | Core Studio -> Modules -> Salto -> Driver Configuration -> xio.Salto.LocalPort |