7/6/2023 0 Comments Resilio sync security![]() This information is sent in the clear so you know what we are gathering. * Resilio collects usage statistics from Sync to help us improve the product. * Each device has full control over how it communicates with other peers and services can be limited to increase privacy. * Insecure, but easy-to-use tools (like email) can be used to securely sync folders with Sync. * Sync uses X.509 digital certificates for mutual authentication and validation of file modification requests. * Sync uses cryptographic security instead of a password-based system, and all your data is AES-128 encrypted in transit. Other solutions may keep your files private, but store login, usage, and access information on public servers. This allows data to exist at rest exclusively on private infrastructure. * Sync only transfers data by establishing a direct connection between peers you select. Here are some of the key security and privacy properties of Sync: SSL is used to provide security for peer data exchange over the network. Instead of using keys like its 1.4-predecessor, Sync 2.x makes use of the X.509 digital certificate, which ensures that such operations as adding peers, sharing folders, revoking access to folders, etc are done in a secure way. If your Management Console (and default Tracker Server) are behind a Firewall and you have WAN based Agents, you may need to enable port forwarding from you WAN based IP address to your LAN based computer (hosting the Management Console) for the following: Protocolįor Connect Agents to communicate with the Management Console, they require a configuration file (nf) which contains the IP address (or DNS name), and security credentials of the Management Console.Resilio always puts your security first – that’s why we made Sync even safer than it was before. If you don't use a proxy, no need to open these ports ProtocolĬonnection from agents to proxy server (additionally, custom port might be required) *** Multicast is optional and if your organization doesn't allow it there are other ways to enable Connect Agents to transfer data. **Connect Agents can be configured to transfer data using only TCP or UDP if your organization limits the transmission of one these protocols Otherwise it's not guaranteed that the outgoing traffic will be forwarded through the same data transfer port, which will make connection impossible between such Agents. Add custom parameter external_port with a port number to the Agent's Profile. ** If each of the Agents is behind a NAT or firewall (pfSense in particular), it may required to:Ī) do a port forwarding for at least one of agentsī) configure external port. * UDP is optional and if your organization doesn't allow it the Tracker will still work. Manual log uploads go to which is a link to Agent ProtocolĬonnection to Proxy server (additionally, custom port might be required) ![]() If there are unlicensed Agents, the Management Console checks for license updates every 10 minutes.Ĭheck for counts of total and available support tickets per support plan.Ĭreate Support Case (with automated Log upload). ** By default the tracker runs on the same machine as the Management Console, but can be placed on another machine if preferredĪdditionally Management Console reaches out to the following Resilio's public servers:Ĭhecking license updates. * Port 8445 is optional and only used when Management Console saves events to events.log Ports can be customized in Management Console configuration file and the profile. The tables below contain default values for the ports user by Resilio Connect. What Ports are required by Resilio Connect? Diagrams Basic Configuration (Management Console, Tracker and Agents are all on same LAN)Īdvanced Configuration (Management Console & Tracker Server are behind a Firewall and you have WAN-based Agents) To make this possible the necessary ports must be opened and forwarded on all firewalls, NATs, and routers between the Agents. Agents transfer data to each other using TCP and UDP. ![]() Once the Management Console and Agents are communicating, the Resilio Connect Agents must also be able to transfer data to and from other Agents. The Management Console communicates with the Agents using TCP. Depending on the network your Agents are in, these must be open to let traffic flow between the Agents, Management Console, and the Tracker Server. Resilio Connect uses specific ports and protocols to properly function. ![]()
0 Comments
Leave a Reply. |