I run a hardware firewall. What ports do I need to allow for the Sophos client to get its updates automatically and correctly communicate with the management console?
The Sophos Remote Management Service uses ports 8192, 8193 and 8194 to communicate with the Management Console to which it is assigned. The consoles are eis-sav-con1, 169.230.50.15; eis-sav-con2, 169.230.50.16. You can determine which management console your client is pointed at by the file name from which you installed Sophos. The file names have the console number embedded in them. For example, the file name, UCSFSophosEntAVWinXPCon1, is the UCSF Sophos Enterprise Anti-Virus for Windows 2000, XP and 2003 that will report to the management Console #1. Enter the IP address for Console 1 from the list above. Also, if you restrict Port 80, you need to open it up to http://its.ucsf.edu.