Interesting course as part of Infosec 2015.
In order to activate an IOS device when behind a firewall allow the following traffic
https 22.214.171.124 nwk-unbrick2.apple.com
If you allow port 80 and 443 access out of your network then accessing the Apple App Store from behind your firewall it’s a doddle.
However if you have a more locked down area of a network but have iPads etc that need App Store access here’s what you need to allow port 80 and 443 access to:
126.96.36.199/16 Apple's Class B Subnet includes phobos.apple.com address(es) 188.8.131.52/23 Akamai Technologies CDN
I appreciate this is a bit of a wide range of addresses, but unless you want to be having to packet capture and analyze where the App store is heading too that week it’s a reasonable. I doubt anyone would give up a class B IPv4 range nowadays.
Hope that helps some of you out!
Our firewall was configured as per Google’s documentation to allow the Google Hangouts nee Talk client and the Android Google Hangouts app to connect. but to no avail.
With a little bit of troubleshooting I found that an additional port needed to be opened too. So here’s the firewall ports you need to open for Google Talk:
- 80 TCP
- 443 TCP
- 19302 – 19309 TCP and UDP
- Additional Ports for various clients
Ports Clients 5222, 5223, 5224 XMPP clients 5228 and 5229 Android phones 5269 XMPP federation
This information was taken from Optimize your network for Hangouts
I hope that helps some of you out there.