TCP/UDP ports used by GE Products - White Listing

What Common Licensing URL should be whitelisted?
Licensing will try and communicate to https://*.flexnetoperations.com on ports 80 and 443.

In general GE recommends having a policy that will “whitelist” traffic to/from *.flexnetoperations.com.

1. Is the requested rule to Allow or Deny?

The rule should be set to "Allow".

2. What port/service or protocol will this traffic be using?

The licensing traffic uses port 80 and 443.

3. What protocol will be used (TCP or UDP)?

TCP is the protocol that will be used for the communications to the cloud servers.

4. What is the destination IP or subnet?

The destination address will be: *.flexnetoperations.com
The URL is provided as the IP address could change and GE does not have control over the IP address.

5. Will the traffic be bidirectional to the cloud?

Initiated internal only, not bidirectional (except in cases where license operations are done - returned/refresh/activated).

6. Does Advantage Licensing need to maintain internet access?

No, internet access is only needed for initial activation, license refresh and returns.

7. What is the Local License Server (LLS) default port number?

The local license server server port number is the port all clients will use to internally communicate to the local license server. The default port a Local License Server uses is 3333.

What communications (TCP/UDP) ports do GE Proficy products use?

For Cimplicity, please refer to :
https://digitalsupport.ge.com/communities/en_US/Article/What-Communications-TCP-UDP-Ports-Does-CIMPLICITY-UseB8442

For Plant Application, please refer to:
https://digitalsupport.ge.com/communities/en_US/Article/Proficy-Application-Suite-Port-Firewall-Requirements-Plant-Applications-SOA-Workflow-Vision-Historia