Firewall: Jamf PRO Server testing

ekkehard
Contributor

@dan.kubley showed me this to test if the firewall for your jamf PRO server is configured correctly:

/bin/nc -z gateway.push.apple.com 2195
/bin/nc -z feedback.push.apple.com 2196
/bin/nc -z mdmenrollment.apple.com 443
/bin/nc -z vpp.itunes.apple.com 443
/bin/nc -z jamf-patch.jamfcloud.com 443
/bin/curl http://ax.itunes.apple.com/WebObjects/MZStoreServices.woa/wa/wsSearch?term=birds&entity=software&&country=us

1 ACCEPTED SOLUTION

ekkehard
Contributor

Thank you @JIM_PCM much better everywhere:

/bin/nc -vz gateway.push.apple.com 2195
/bin/nc -vz feedback.push.apple.com 2196
/bin/nc -vz mdmenrollment.apple.com 443
/bin/nc -vz vpp.itunes.apple.com 443
/bin/nc -vz jamf-patch.jamfcloud.com 443
/bin/curl http://ax.itunes.apple.com/WebObjects/MZStoreServices.woa/wa/wsSearch?term=birds&entity=software&&cou

View solution in original post

4 REPLIES 4

gachowski
Valued Contributor II

Dan is a ROCKSTAR!!!!!!!

C

JIM_PCM
New Contributor II

Should these commands return any kind of result? What responses are we looking for when running these?

JIM_PCM
New Contributor II

Nevermind, found out the answer. Depending on your OS, nc (netcat) may or may not output the verbose results by default. On Ubuntu Server 16.04.3 LTS the version of nc installed is the openbsd variant, which does not output a verbose result unless you add the '-v' flag to the command.

On Mac OS (10.12.6) the version of netcat outputs the verbose success response by default.

Example: (on Ubuntu Server 16.04.3, using nc.openbsd variant at /bin/nc)
/bin/nc -vz vpp.itunes.apple.com 443
Connection to vpp.itunes.apple.com 443 port [tcp/https] succeeded!

ekkehard
Contributor

Thank you @JIM_PCM much better everywhere:

/bin/nc -vz gateway.push.apple.com 2195
/bin/nc -vz feedback.push.apple.com 2196
/bin/nc -vz mdmenrollment.apple.com 443
/bin/nc -vz vpp.itunes.apple.com 443
/bin/nc -vz jamf-patch.jamfcloud.com 443
/bin/curl http://ax.itunes.apple.com/WebObjects/MZStoreServices.woa/wa/wsSearch?term=birds&entity=software&&cou

View solution in original post