Windows Firewall and the ArcGIS Server AMIs

Windows Firewall is enabled and preconfigured when you build a Windows-based ArcGIS Server site using ArcGIS Server Cloud Builder on Amazon Web Services or the AWS Management Console. All ports that are necessary for ArcGIS Server to run are open.

To prevent any malicious programs from contacting a master computer for instructions, Windows Firewall has been configured to block all outbound connections except those from a few trusted programs. Allowed programs are ArcGIS, Python, Internet Explorer, Firefox, and SQL Server (Standard or Express). If you install other programs that make outbound connections, you'll need to adjust Windows Firewall rules to allow these programs.

Windows Firewall and Amazon security groups

The Amazon security groups provide protection against unsolicited incoming traffic. In this role, they complement Windows Firewall. To completely open a port to inbound traffic, the port must be allowed by both the Amazon security group and Windows Firewall.

12/10/2013