Ports and Protocols
Resilio Connect uses specific ports and protocols to properly function. Depending on the network your Agents are in, these must be open to let traffic flow between the Agents, Management Console, and the Tracker Server. The Management Console communicates with the Agents using TCP.
Once the Management Console and Agents are communicating, the Resilio Connect Agents must also be able to transfer data to and from other Agents. Agents transfer data to each other using TCP and UDP. To make this possible the necessary ports must be opened and forwarded on all firewalls, NATs, and routers between the Agents.
Diagrams
Basic Configuration (Management Console, Tracker and Agents are all on same LAN)
(image is clickable)
Advanced Configuration (Management Console & Tracker Server are behind a Firewall and you have WAN-based Agents)
(image is clickable)
What Ports are required by Resilio Connect?
The tables below contain default values for the ports user by Resilio Connect. Ports can be customized in Management Console configuration file and the profile.
Management Console
| Protocol | Port | Description |
| TCP | 8443 | Administrator Console |
| TCP | 8444 | Resilio Agent control traffic |
| TCP | 8445 * | Resilio Agent events and logs |
| TCP and UDP | 3000 | Tracker service ** |
* Port 8445 is optional and only used when Management Console saves events to events.log
** By default the tracker runs on the same machine as the Management Console, but can be placed on another machine if preferred
Agent
| Protocol | Port | Description |
| TCP and UDP * | 3000 | Tracker Server |
| TCP and UDP ** | 3839 | Data transfer between agents |
| Multicast UDP (239.192.0.0)*** | 3838 | LAN agent discovery |
| UDP multicast to *** 239.255.255.250 | 1900 |
UPnP and NAT-PMP |
| TCP unicast | 5351 |
* UDP is optional and if your organization doesn't allow it the Tracker will still work.
** Connect Agents can be configured to transfer data using only TCP or UDP if your organization limits the transmission of one these protocols
*** Multicast is optional and if your organization doesn't allow it there are other ways to enable Connect Agents to transfer data.
Port Forwarding
If your Management Console (and default Tracker Server) are behind a Firewall and you have WAN based Agents, you may need to enable port forwarding from you WAN based IP address to your LAN based computer (hosting the Management Console) for the following:
| Protocol | Port | Description |
| TCP | 8444 & 8445 | Management Console |
| TCP and UDP | 3000 | Tracker Server |
Agent Connection to Management Console
For Connect Agents to communicate with the Management Console, they require a configuration file (sync.conf) which contains the IP address (or DNS name), and security credentials of the Management Console. This is so they can:
- Establish a secure connection to the Management Console
- Send file and job operation events
- Connect to other Agents and receive Agent policy