Configuring Local Firewall Settings for iFolder Traffic

If you use a local firewall, you must set your firewall to allow iFolder to choose a local dynamic port or configure a local static port for the iFolder client to communicate locally (the same computer) with Mono XSP Server. iFolder uses Mono XSP Web services to communicate via HTTP or HTTPS (SSL, default) with the Novell iFolder enterprise servers where you have iFolder accounts. The iFolder administrator configures iFolder services that determine whether communications use HTTP or HTTPS in your environment.

Your firewall does not block traffic between Mono XSP and the Novell iFolder enterprise server because Mono XSP uses the standard HTTP or HTTPS ports for traffic. However, if you block the traffic between the client and Mono-XSP, the client has no way to communicate with the server. You would not be able to log in to your iFolder account and synchronize iFolder data.

Initially, the iFolder configuration does not specify a particular port to use for client-to-Mono XSP communications. When iFolder first runs, it opens an available local port to listen for requests from the Mono XSP and to send data to the server via Mono XSP. It writes the port number to a configuration file and uses this port thereafter unless the port is not available whenever iFolder starts. If the port is in use by another application, iFolder selects a different available port, reconfigures the port in the configuration file, and uses the new port thereafter. For example, if iFolder is down and another application takes the port, when you restart iFolder, iFolder must select and configure a different port to use.


Using a Local Dynamic Port

If you use a local firewall on your computer, the firewall should detect the local traffic between the iFolder and Mono XSP server whenever iFolder contacts the server to synchronize its list of users and iFolder data. Allow the traffic to avoid receiving the pop-up alert whenever the client starts. If you allow the traffic permanently, your firewall should not remind you again.


Using a Local Static Port

You can optionally add the Web Service Port Range parameter in the Service Manager section of the Simias.config file to allow Mono-XSP Server to use a static port or a range of ports for this local traffic. This port or range of ports can then be opened in the firewall to allow communications for Mono-XSP.

You can find Simias.config in the following locations:

Operating System Location of the Simias.config File

Linux

/home/username/.local/share/simias/Simias.config

Windows

C:\Documents and Settings\username\Local Settings\Application Data\simias\Simias.config

Macintosh

/Users/username/.local/share/simias/Simias.config

Add the Web Service Port Range Setting to the Service Manager section of the Simias.config file. For example:

<configuration>
  <section name="ServiceManager">
    <setting name="WebServicePortRange" value="monoxsp_port" />   
  </section>
</configuration>

Replace monoxsp_port with a port number or range of port numbers:

To configure your system to use a specific port or range of ports:

  1. Configure your firewall to allow traffic for the port or range of ports you want to use for iFolder traffic.

    See your firewall's documentation for information on how to open a port in the firewall.

  2. Stop the iFolder client by right-clicking the iFolder icon iFolder Application Icon, then selecting Exit.

  3. Modify the Simias.config file by adding the Web Service Port Range parameter to the Service Manager section.

  4. Start the iFolder client.

    For information, see Starting the iFolder Client.