The following ports need to be opened for WSO2 IoT Server, and Android and iOS devices so that it can connect to Google Cloud Messaging (GCM)/Firebase Cloud Messaging (FCM) and APNS (Apple Push Notification Service), and enroll to WSO2 IoT Server.
|HTTPS gateway port.|
|9443||HTTPS port for the core profile.|
HTTP gateway port.
|9763||HTTP port for the core profile.|
|1886||Default MQTT port.|
|9445||HTTPS port for the analytics profile.|
|9765||HTTP port for the analytics profile.|
|1039||HTTP port for the analytics profile|
Ports required for mobile devices to communicate with the server and the respective notification servers.
|The ports to open are 5228, 5229 and 5230. Google Cloud Messaging (GCM) and Firebase Cloud Messaging (FCM) typically only use 5228, but it sometimes uses 5229 and 5230.|
GCM/FCM does not provide specific IPs, so it is recommended to allow the firewall to accept outgoing connections to all IP addresses contained in the IP blocks listed in Google's ASN of 15169.
|5223||Transmission Control Protocol (TCP) port used by devices to communicate to APNs servers.|
|2195||TCP port used to send notifications to APNs.|
|2196||TCP port used by the APNs feedback service|
TCP port used as a fallback on Wi-Fi, only when devices are unable to communicate to APNs on port 5223
The APNs servers use load balancing. The devices will not always connect to the same public IP address for notifications. The entire 220.127.116.11/8 address block is assigned to Apple, so it is best to allow this range in the firewall settings.