Which ports must not be blocked by the firewall?
This article has been machine translated. If you find any errors, we would be grateful if you could report them to translation@timesensor.com.
Various tasks in timeSensor LEGAL need access to internet resources to run correctly. Therefore, you must enable certain ports on your firewall. Which ports these are depends on your usage scenario.
timeSensor LEGAL Classic
In the classic installation, the database server of timeSensor LEGAL is located within your law firm or within a virtualised environment. In this scenario, communication between client and server application does not need to be encrypted, as they are located within the same protected LAN. In this scenario, access from outside (e.g. home office) takes place via a VPN tunnel.
The following ports must be opened on the law firm's firewall for this scenario:
| Port | Protocol | Initiation | Description |
| 80, 443, 8080 | HTTP, HTTPS | outbound | It is used to query the license server to detect and display new updates, as well as to query license information. |
| 20, 21, 22 | FTP, SFTP | outbound | It is used for downloading updates via FTP. Please note that large update packages of up to 1 GB may be downloaded, and the firewall must not block them. |
| 465, 587, 993, 995 | TCP | outbound | Only necessary when using the email interface. |
timeSensor LEGAL 365
With timeSensor LEGAL 365, the server is located in the data centre and the client communicates with the server via a TSL-encrypted connection.
The following ports are open server-side in this scenario:
| Port | Protocol | Initiation | Description |
| 80, 443, 8080 | HTTP, HTTPS | outbound | It is used to query the license server to detect and display licenses and new updates. |
| 20, 21, 22 | FTP, SFTP | outbound | It is used for downloading updates via FTP. Please note that large update packages of up to 1 GB may be downloaded, and the firewall must not block them. |
| 465, 587, 993, 995 | TCP | outbound | Only necessary when using the email interface. |
| 19812, 19813, 19814 | TCP | outbound and inbound | It is used for encrypted data traffic between the client and the server. |
| 19813 | UDP | outbound and inbound | It is used for encrypted data traffic between the client and the server (QUIC). |
The following ports are open client-side in this scenario:
| Port | Protocol | Initiation | Description |
| 465, 587, 993, 995 | TCP | outbound | Only necessary when using the email interface. |
| 19812, 19813, 19814 | TCP | outbound | It is used for encrypted data traffic between the client and the server. |
| 19813 | UDP | ausgehend | It is used for encrypted data traffic between the client and the server (QUIC). |
Broadcasting
The client application finds the server either by entering the IP address of the server once or - if the server and client are in the same subnet - by automatically broadcasting the server. Broadcasting means that the server continuously reports to the network via UDP protocol so that clients in the same subnet can see and display the server. Broadcasting is not always desired and is sometimes disturbing, for example if several servers are in the same network. The broadcasting of the server can be prevented by setting a parameter on the server.
Related Articles
How do I set up a Windows server for use with timeSensor LEGAL?
General This article describes how a Windows server must be set up to use timeSensor LEGAL. The configuration described in this article is binding in the sense of the General Terms and Conditions of timeSensor LEGAL. These instructions apply to ...How do I put the interface to Starface into operation?
This article has been machine translated. If you find any errors, we would be grateful if you could report them to translation@timesensor.com. Starface is a VOIP based telephone system with good Windows and macOS support. From the Business Edition of ...How can I update timeSensor LEGAL?
This article has been machine translated. If you find any errors, we would be grateful if you could report them to translation@timesensor.com. General If you have administrator rights, you can update timeSensor LEGAL yourself at any time. Mac users ...How do I configure the e-mail interface in timeSensor LEGAL?
This article has been machine translated. If you find any errors, we would be grateful if you could report them to translation@timesensor.com. General The functionality of the eMail interface of timeSensor LEGAL is described in detail in this ...How do I optimise the security of my database?
This article has been machine translated. If you find any errors, we would be grateful if you could report them to translation@timesensor.com. Since lawyers handle particularly sensitive data, the security of the timeSensor LEGAL database is an issue ...