Common ports used by Printix and some info about Web proxy
All Printix communication both internal and external is Encrypted and uses HTTPS (SSL/TLS).
HTTPS – TCP 443
Secure communication between Printix components and the authentication services.
RAW print – TCP 9100
Transfer of printdata to the printers. Printdata can also be sent through LPR and TCP 515(Using other ports is also supported)
TCP 21335
Relaying printdata to another PC running a Printix client. Encrypted!
TCP 21336
Secure communication to Printix Redirector on a Windows Printserver.
UDP 21337
Printix Discovery protocol - used to find other computers running Printix clients. Not Encrypted.
UDP 5353
If Mobile Print is activated, and iOS devices needs to print, you have to use Bonjour to make the devices available. Bonjour uses multicast DNS.
TCP 21338 and 21339
These two ports have to be open on user computers. TCP 21338 is used for secure communication between PrintixClient.exe and PrintixService.exe processes, and TCP 21339 is used for Printix clients built-in web-server for login and print (Windows spooler/CUPS)
Web-proxy and SSL-inspection
Web-proxy and/or SSL-inspection can prevent login to the Printix client. With exception for Printix.net and sub-domains will have to be added so the data can travel freely.
You will have to give permission to the following URLs
- https://assets.printix.net
- https://api.printix.net
- https://auth.printix.net
- https://sign-in.printix.net
- https://drivers.printix.net
- https://software.printix.net
- wss://websocket.proxyendpoint.printix.net
If Mobile Print is activated (Apple AirPrint)
- https://airprint.printix.net
If you're using your own blob-storage
- https://*.blob.core.windows.net
How does the Printix client find the web-proxy
The Printix client is made up of two parts
- The user interface of Printix (PrintixClient.exe) which runs under the authenticated user
- Printix Service (PrintixService.exe) which handles printing and runs the local system account.
The Printix client runs a Windows function called WinHttpGetProxyForUrl to get settings from the PAC-file. The client also looks for proxy-settings configured for the user. If it finds fitting proxy-settings, then those are saved in the Windows registry under the local system account (HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections).