IPSIDS

Q: Facetime - Apple Services behind firewall

Dear readers,

 

In my case we want to enable users to use face time, but opening this insane port range over the entire internet is no good solution for us.

 

In this case we have a big corporate network with 2000> ipad's and iphones.

 

80 (TCP)
443 (TCP)
3478 through 3497 (UDP)-
5223 (TCP)
16384 through 16387 (UDP)-
16393 through 16402 (UDP)-

 

Of course 80 and 443 are open for web-traffic.

 

But opening the other ports will allow potential unwanted services to be used as well.

 

There is another option, opening these ports for only certain destinations. But since apple uses multiple ip ranges for these services, this doesn't seem to be a option at all.

 

Is there a way to find all the used ip ranges for apple services? Or a way to use these applications without losing security ?

 

Thnx.

Posted on Sep 16, 2015 6:01 AM

Close

Q: Facetime - Apple Services behind firewall

  • All replies
  • Helpful answers