Set up firewalls to allow traffic to flow as described in the following table.
Table 1–2 Firewall Rules
From |
To |
Protocol |
Traffic Type |
---|---|---|---|
Internet User |
LoadBalancer-9:3443 |
HTTPS |
Internet metadata URLs access and user authentication at the Service Provider site |
Internet User |
LoadBalancer-10:4443 |
HTTPS |
Service Provider application access |
Internet User |
LoadBalancer-11:6443 |
HTTPS |
Service Proivder application access |
Internet User |
LoadBalancer-3:9443 |
HTTPS |
Internet metadata URLs access and user authentication at the Identity Provider site |
LoadBalancer-10:4080 |
ProtectedResource-3:1080 |
HTTP |
Service Provider application access by user |
LoadBalancer-10:4080 |
ProtectedResource-4:1080 |
HTTP |
Service Provider application access by user |
LoadBalancer-11:5080 |
ProtectedResource-3:2080 |
HTTP |
Service Provider application access by user |
LoadBalancer-11:5080 |
ProtectedResource-4:2080 |
HTTP |
Service Provider application access by user |
Load Balancer-3:7070 |
AccessManager-1:8080 |
HTTP |
Load balancer redirection to Access Manager |
Load Balancer-3:7070 |
AccessManager-2:1080 |
HTTP |
Load balancer redirection to Access Manager |
LoadBalancer-9:1080 |
FederationManager-1:8080 |
HTTP |
Load balancer redirection to Federation Manager |
LoadBalancer-9:1080 |
FederationManager-2:8080 |
HTTP |
Load balancer redirection to Federation Manager |