Needed Ports for SBS 2008

MarcoMatsui used Ask the Experts™
I want to setup a Cisco ASA Firewall.
Which ports do I need to Open on the ASA Firewall to use all functions of my SBS 2008?
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Actually, you don't need many, port 25 (for email) and port 443 (rww, owa, ...)
Solutions Architect
Top Expert 2016
i will only open
443  TCP for website
25 TCP for SMTP

987       TCP       HTTPS published WSS       Yes - Publishes Windows SharePoint Services

1723       TCP       VPN       No  optional if VPN is configured
Some more info:

Port 25 TCP  SMTP (Outgoing Exchange e-mail)
Port 80 TCP  HTTP (NOT needed normally)
Port 443 TCP  HTTPS (RWW, OWA, remote desktop or Terminal Server sessions)
Port 987 TCP  External secure Companyweb access
Port 1723 TCP  PPTP (VPN)
If port 80 is not open, then you must specify https:// for RWW connections; otherwise if port 80 is open you can use http:// and the session will be redirected automatically to port 443. If your router is configured to use UPnP, the Internet Address Management Wizard (IAMW) will open port 80.


Do you still need help?
Was this issue resolved?

if so, please close this question:



Do I need port 443 on sbs web applications on sbs 2008? I believe I need it on the default website. I do not see companyweb listed under sites so I can assign it to port 444. My issue is that I cannot get default website and sbs web applications to run at the same time. When I attempt to start either one when the other is running, I get an error indicating that it cannot start because app is using the same port. This did not start until after doing windows updates, and I realized I could not access owa nor rww. Upon launching sbs management console, I noticed that rww and owa were not started, and red x's. I noticed that both sbs web applications and default website have port 443, and port 80 in their bindings settings. My gut tells me that port 80 is ok on both of them, but port 443 needs to be removed from one of them. I suspect the 443 should be removed from sbs web applications, but I don't want to do anything until I get more advice.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial