Security
      Back to home
      1. Help Center
      2. Printix
      3. Security

      Network and Security with Printix (Security)

      Common ports used by Printix and some info about Web proxy

      All Printix communication both internal and external is Encrypted and uses HTTPS (SSL/TLS).

      HTTPS – TCP 443

      Secure communication between Printix components and the authentication services.

      RAW print – TCP 9100

      Transfer of printdata to the printers. Printdata can also be sent through LPR and TCP 515(Using other ports is also supported)

      TCP 21335

      Relaying printdata to another PC running a Printix client. Encrypted!

      TCP 21336

      Secure communication to Printix Redirector on a Windows Printserver.

      UDP 21337

      Printix Discovery protocol - used to find other computers running Printix clients. Not Encrypted.

      UDP 5353

      If Mobile Print is activated, and iOS devices needs to print, you have to use Bonjour to make the devices available. Bonjour uses multicast DNS.

      TCP 21338 and 21339

      These two ports have to be open on user computers. TCP 21338 is used for secure communication between PrintixClient.exe and PrintixService.exe processes, and TCP 21339 is used for Printix clients built-in web-server for login and print (Windows spooler/CUPS)

      Web-proxy and SSL-inspection

      Web-proxy and/or SSL-inspection can prevent login to the Printix client. With exception for Printix.net and sub-domains will have to be added so the data can travel freely.

      You will have to give permission to the following URLs

      • https://assets.printix.net
      • https://api.printix.net
      • https://auth.printix.net
      • https://sign-in.printix.net
      • https://drivers.printix.net
      • https://software.printix.net
      • wss://websocket.proxyendpoint.printix.net

      If Mobile Print is activated (Apple AirPrint)

      • https://airprint.printix.net

      If you're using your own blob-storage

      • https://*.blob.core.windows.net

       

      How does the Printix client find the web-proxy

      The Printix client is made up of two parts

      • The user interface of Printix (PrintixClient.exe) which runs under the authenticated user
      • Printix Service (PrintixService.exe) which handles printing and runs the local system account.

      The Printix client runs a Windows function called WinHttpGetProxyForUrl to get settings from the PAC-file. The client also looks for proxy-settings configured for the user. If it finds fitting proxy-settings, then those are saved in the Windows registry under the local system account (HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections).