- BlackBerry® Enterprise Server
To establish a correct Enterprise Activation or ETP connection when the Blackberry® Enterprise Server or BlackBerry® Desktop Redirector software is behind a firewall, complete the following:
- On the firewall, verify that port 25 (SMTP) is open for inbound/outbound Transmission Control Protocol (TCP) traffic and port 53 (DNS) is open for inbound initiated Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) traffic.
- Depending on the firewall interface, complete one of the following:
- If the firewall allows you to specify acceptable external host names, add blackberry.net and blackberry.com as an acceptable sub domain.
- If the firewall only allows you to specify acceptable external Internet Protocol (IP) addresses, add the IP address ranges listed in the first table of KB03735 to the allowed list.
- Confirm any filters for Bogon routes are up-to-date to ensure unnecessary filtering of traffic on edge routers is not performed.
When using Wi-Fi® for wireless Enterprise Activation, Port 25 is required to ensure that the BlackBerry® Router can forward the activation email to the user's messaging server.
The BlackBerry Router needs DNS to locate the SMTP Server that will be used for routing the activation messages. DNS will most likely already be accessible — however, note that Port 53 is used for DNS.
For additional firewall and connection requirements for the BlackBerry Enterprise Server, see KB03735.
If you require more information, please contact BlackBerry® Technical Support Services.
By downloading, accessing or otherwise using the Knowledge Base documents you agree:
(b) not to copy, distribute, disclose or reproduce, in full or in part any of the documents without the express written consent of RIM.
Visit the BlackBerry Technical Solution Center at www.blackberry.com/btsc.