In order to let Enterprise Gateway communicate with the Power BI service, I understand that one needs to allow outbound traffic on certain ports.
While opening the firewall for HTTPS traffic is no problem, my customer doesn't like the prospect of opening the ports 5671-5672 and 9350-9354 for a protocol which can't be checked like they do with HTTPS. This seems due to the fact that Service Bus is binary, while HTTPS is XML (I hope that is true?) I know that for e.g. Data Management Gateway opening ports for service bus is optional (LINK)
- Did i get the information about the properties of the two kinds of protocol correctly?
- Is opening ports 5671-5672 and 9350-9354 for Power BI essential? Or is that only needed for certain features? If yes, which features?
Thanks a lot for any hint!
Solved! Go to Solution.
The Power BI security whitepaper indicates that if https is used for communication then you only need to open port 443 only. Correct?
This part is from the Power BI security whitepaper:
The gateway supports the following two communications protocols:
AMQP 1.0 – TCP + TLS: This protocol requires ports 443, 5671-5672, and 9350-9354 to be open for outgoing communication. This protocol is preferred, since it has lower communication overhead.
HTTPS – WebSockets over HTTPS + TLS: This protocol uses port 443 only. The WebSocket is initiated by a single HTTP CONNECT message. Once the channel is established, the communication is essentially TCP+TLS. You can force the gateway to use this protocol by modifying a setting described in the on-premises gateway article.
This is a must watch for a message from Power BI!
Click here to read more about the December 2020 Updates!
Click here to read the latest blog and learn more about contributing to the Power BI blog!
Mark your calendars and join us for our next Power BI Dev Camp!.