Before you install FotoWeb
This topic details network requirements and other settings that you need to consider before setting up FotoWeb on a server.
System requirements
Make sure the server meets the system requirements.
Required ports
Your server will have to be configured to allow connections on the following ports:
|
Protocol |
Port(s) |
Affected servers |
Details |
|---|---|---|---|
|
HTTP access |
TCP 80 / 443 |
FotoWeb |
Communication between FotoWeb and its clients uses TCP port 80/443, the regular HTTP/HTPS port, which must be opened in the server's firewall and in any proxy that stands between the FotoWeb server and the external network to allow incoming connections to the server. Learn more about configuring FotoWeb for secure connections that use SSL. FotoWeb does not support running on other ports than 80 and 443. |
|
FotoWare client-server communications |
TCP 7000 / 7001 |
All FotoWare servers that run the Operations Center |
TCP port 7000 must be opened to allow system administrators to access Operations Center, used to configure the server applications. This port is also used for communications between FotoWare server applications; for example FotoWeb uses it to connect to indexes that have been created on the Index Manager server. By default the secure communications port (SSL) uses a self-signed certificate and is open for communications on port 7001. Learn more about securing FotoWare protocol communications using SSL in the Operations Center guide. If the FotoWeb server is placed in a DMZ, you will have to open port 7000 for administrators on your internal network. |
|
Communications between Index Manager and FotoWeb. |
TCP 7200 |
FotoWeb |
Index Manager pushes metadata to the FotoWeb server. If Index Manager and FotoWeb run on different servers, the firewall on the FotoWeb server must allow incoming connections on port 7200. Learn more. |
|
FotoWare log server |
UDP 7000 | FotoWeb |
As stated in the system requirements, FotoWeb communicates with the FotoWare Log Server using UDP port 7000. You should therefore make sure that no other services on the server claim this port and interrupt the logging service. Microsoft's DNS server can typically interfere with this port since it can be configured to use an arbitrary port. Hence, if you are using Microsoft's DNS server, you should make sure that it has been explicitly set not to not allow connections on UDP port 7000. |
|
Active Directory communications |
TCP and UDP port 389 from the FotoWeb server to the AD server (Port 636 when using SSL connection to AD) |
FotoWeb Server/ AD server |
The default port for communication with Active Directory is 389. This value is pre-entered once the Active Directory option page is enabled, and can be modified for special cases where a different port has been chosen, e.g. for security reasons. The AD server must accept incoming traffic on this port using both TCP and UDP, so this port must be opened in the firewall for both protocols. No additional ports need to be opened in the FotoWeb server for AD support. |
|
SMB access to Windows shares (asset storage) |
TCP 445 |
File server |
FotoWeb accesses archives that are indexed by Index Manager. When a user request prompts FotoWeb to obtain the high-resolution asset from the file storage, it is obtained from the file server over SMB. This relies on a working SMB connection between FotoWeb and the file server. |
| SQL Server (When connecting to a SQL instance on another server) |
TCP 1433 | SQL Server |
FotoWeb is bundled with a SQL server which is installed alongside FotoWeb. In this case, all communication is local and no ports need opening. If you choose to use another SQL server during FotoWeb installation, you need to make provisions by opening the required port for communication between FotoWeb and the SQL host. |
| SMTP (Email) | TCP 25 | SMTP server |
FotoWeb requires a connection to an SMTP server to send emails. Email services are used for administrative notifications, reports, user signup invitations, password resets, album sharing and more. |