Mideye Networking: Port & Firewall Setup

The following ports are used for communication with Mideye Server and need to be open in the network. If sharing a platform with other applications, verify that these ports are not already in use.

Web administration GUI

Port	Protocol	Direction	Purpose
443 or 8443	TCP	Inbound	HTTPS — port is configurable during installation
8080	TCP	Inbound	HTTP — default in Docker / Kubernetes deployments

RADIUS

Port	Protocol	Direction	Purpose
1812	UDP	Inbound	RADIUS authentication (default; configurable per RADIUS server)
1813	UDP	Inbound	RADIUS accounting (if enabled)
3799	UDP	Outbound	RADIUS Disconnect Messages / CoA to NAS devices

RADSEC (RADIUS over TLS)

Port	Protocol	Direction	Purpose
2083	TCP/TLS	Inbound	RADSEC — disabled by default

Database

Port	Protocol	Direction	Purpose
3306	TCP	Outbound	MariaDB / MySQL (if database is on a remote server)
1433	TCP	Outbound	Microsoft SQL Server (if database is on a remote server)

Directory services (LDAP / Active Directory)

Port	Protocol	Direction	Purpose
636	TCP	Outbound	LDAPS — LDAP over TLS (recommended)
389	TCP	Outbound	LDAP without TLS (not recommended)

Mideye Switch

Port	Protocol	Direction	Purpose
Customer-specific TCP port	TCP	Outbound	Communication with `primary.mideye.com` and `secondary.mideye.com`. Request the port from support@mideye.com.

See the Pre-install Checklist firewall section for Switch IP addresses and activation URLs.

Mideye Shield (IP threat intelligence)

Port	Protocol	Direction	Purpose
443	TCP	Outbound	HTTPS to `shield.mideye.com` (optional)

Other

Port	Protocol	Direction	Purpose
53	UDP/TCP	Outbound	DNS — required for LDAPS, FQDN-based Switch configuration, and RADIUS Disconnect Messages
25	TCP	Outbound	SMTP — only if email notifications are configured
443	TCP	Outbound	Microsoft Graph API — only if Azure AD / Entra ID integration is used
443	TCP	Outbound	Mideye+ simplified activation (`activate01.mideye.com`, `activate02.mideye.com`)