pcAnywhere 12.5 SP4 and pcAnywhere Solution 12.6.7 incorporate the use of SSL. Do the pcAnywhere 12.5 SP4 and pcAnywhere Agent 12.6.8096 host programs listen on a different port for the SSL packets? Customers who have pcAnywhere running in their DMZ need to know if an additional port must be open for communication.
Also, can pcAnywhere be configured to use a different port for SSL, and if so, it separately configurable from the TCP listening port?
SSL packets are sent to the same TCP port on which the pcAnywhere host is configured to listen. All TCP communication from the remote to the host is done on that one port. TCP port 5631 is used by default for data, which is the same as previous versions of pcAnywhere. No other port must be configured for SSL communications.
There has been no change in the use of a UDP port to communicate pcAnywhere status information among instances of pcAnywhere on the same network segment. For example, the "Quick Connect" feature within the full pcAnywhere box product sends a UDP broadcast to search for listening hosts. UDP port 5632 is used by default for communication of status information.
The information above describes the ports used to establish and run a pcAnywhere session between the pcAnywhere remote and host programs. Note that depending on the type of authentication configured for use by a pcAnywhere host item (for example, Active Directory authentication), it may be necessary for the pcAnywhere host program to communicate over additional ports to complete the authentication request (for example, to an Active Directory controller).