Zentyal 3.5 Openchange firewall rules are not added

[stormbyte]

In the past days I have been trying to contact the openchange with thunderbird and android.
Both are not connecting to the server.

After a compare of 3.4 and 3.5 I noticed that the Kerberos firewall rules where not added.
I made a service "Custom Kerberos" with the ports 8880 and 8464 as copied from a 3.4 installation.
But these where not enough

Can someone tell me what ports are needed for a Exchange Account on android?
Or where I can find the ports needed for communication?

[BerT666]

Hi,

I have the same problem, also with other Ports...
I had to deactivate the Firewall from within Zentyal to get things working.

Since my server runs behind a Firewall that only passes a few Ports to the server it is not a huge risk.

I deployed fail2ban with a modified jail-script to block intrusion-attemps and everything works fine.

By now, no intruder came through my firewall and manages to bypass fail2ban ;-)

Regards

Thomas

[jbahillo]

1) Thunderbird can only be setup as an IMAP account. Support for MAPI plugins for thunderbird is not done (EWS connectivity not supported)
2) For Android activesync every communication goes through HTTP/HTTPS depending on how you have configured webserver module

[BerT666]

The ActiveSync Part is working, but it is impossible to access SMTP and IMAP when the Firewall is active...

Since I use an UTM, there is not a great risk to deactivate the Zentyal Firewall ;-)

Regards Thomas