need port 443 open for a server

Hi,
one of the apps we use needs port 443 open to work so was wondering if i have to do this on the firewall or is it possible to open a port on the actual server?  This is on a 2003 server.  Thanks.
dankyle67Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
davorinConnect With a Mentor Commented:
Yes, that is correct.
netstat and external port scanners are normal tools to test open ports.
Maybe you are a little bit confused because source and destination ports are not the same.
When you will have app running you will see connections from random ports between 0 and 65000 (and something) to 443 port on your server. The same happens when you are accessing external secure web page. The connection is established from random port to port 443.
0
 
davorinCommented:
It depends. If you want access to if from internet, then you need to open port 443 from firewall appliance between internet and your LAN AND it should be open also on firewall on your server. Plus you need to forward that port to server's IP address.
If you want to use that app only from your LAN, then you need to open it only on your server.
0
 
dankyle67Author Commented:
Ok i found where to do that on our netscreen 5gt and i tested it using canyouseemee and it said connection refused which is ok since nothing is running on that port right now but at least it can get thru the firewall.  Lets say the app we use needs access to a website and it needs port 443 open to access that site for some reason then how would i open that port on the server itself?  Or can i also put a policy to allow 443 traffic from that server out to the internet using the netscreen policy from trust to untrust?
0
 
davorinCommented:
port 443 is used for HTTPS.
On the windows firewall you add an exception for TCP 443 port using scope any computer, so also from internet it will be unblocked.
Just to get a feeling you can check the begining of this article:
http://www.msexchange.org/articles-tutorials/exchange-server-2003/security-message-hygiene/Protecting-Exchange-2003-Windows-Firewall.html
In this case the author is opening RDP port TCP 3389.

Opening outgoing traffic for port 443 will make no difference in your case. Anyway, probably you already have open that port toward the internet. In different case you would not be able to surf secure web pages.
0
 
dankyle67Author Commented:
Ok thanks, i am just confused by what the techs who support the app that needs access to 443 is telling me since like you said, if 443 was closed for outgoing traffic then the users on our network would not be able to access https sites and they all can so this is not necessary for me to do anything with this part.  I have used netstat before to see what ports are currently connected on the server but is there any other command line that would identify or confirm that port 443 is open?  I guess if we bring up the software and run the netstat then we should see that 443 connection is active correct?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.