The following ports will need to be opened for each server registered with Armor Anywhere.
|Inbound / Outbound||Service / Purpose||Port||Destination|
|Outbound||Malware Protection, FIM, IDS|
|Outbound||Log Management (Filebeat / Winlogbeat)||515/tcp|
|Inbound||Log Relay (Logstash)||The IP address for your virtual machine|
|Outbound||Log Relay (Armor's logging service (ELK))|
* The agent will perform a lookup to the applicable DNS entry, which may resolve to one of multiple Amazon Web Services based subnets. As a result, if your firewall does not support outbound filtering by domain name, then you may need to open all outbound traffic to 443/tcp to accommodate this service.
Additionally, verify that your proxy server can externally communicate.