These requirements must be met for each location utilizing a iSweep.  One iSweep is required at each branch location; iSweeps cannot be shared between locations.  For each iSweep, the following network requirements must be met:
  • Each iSweep requires a static IP address on the network
  • All CU*Answers routing requirements must be met: What are the network routing requirements for CU*BASE GOLD?
  • The iSweep must have the following outbound access:
    • Access to all CU*Answers privately routed network (listed here) on all ports
    • Access to idocvault.cuanswers.com and idocvault02.cuanswers.com on ports 80 (HTTP) and 443 (HTTPS)
    • Access to eupdate.cuanswers.com on port 20212 (TCP)
    • Access to microsoft.com on ports 80 (HTTP) and 443 (HTTPS) - used for security updates
    • Access to liveupdate.symantec.com on port 80 & 443 (HTTP & HTTPS)
    • Access to liveupdate.symantecliveupdate.com on port 80 & 443 (HTTP & HTTPS)
    • Access to akamai.net on port 80 & 443 (HTTP & HTTPS)
    • Access to update.symantec.com/opt/content/onramp on port 21(FTP)
    • Access to FTP update.symantec.com on port 21 (FTP)
    • Access to rmm.cuanswers.com on port 5721 (TCP & UDP)
       
  • ​The iSweep must have the following inbound access:
    • Access from all CU*Answers privately routed network (listed here) on all ports
    • Access from all LAN subnets on all ports
    • Ensure your firewall is configured to block access from the Internet to the iSweep
What if I want to place the iSweep in a DMZ?

It is recommended that you place the iSweep on your local network to allow for an easier connection from your workstations to the file shares on the unit.  However, it is possible to place the iSweep in a DMZ for additional security if you would like.  All of the client workstations need to be able to communicate with the iSweep, and CU*Answers will need access to the iSweep from it's privately routed networks.  If the CU*Answers Cisco router is on a different subnet than the iSweep and client workstations, access from the router will be needed also.