Join the 80,000 other DTN customers who enjoy the fastest, most reliable data available. There is no better value than DTN!

(Move your cursor to this area to pause scrolling)




"I would just like to say that IQFeed version 4 is running very well and I am very happy with its performance. I would also like to extend a big thanks for the fast and efficient help that I always receive. My questions and concerns are always addressed promptly. Way to go!" - Comment from Josh in CO.
"I will tell others who want to go into trading that DTN ProphetX is an invaluable tool, I don't think anyone can trade without it..." - Comment from Luther
"I've never had DTN go out on me since switching. ******* would go down a couple times every month when I was using them." - Comment from Bryce in AL.
"Excellent datafeed !!!" - Comment from Arely
"I am keeping IQFeed, much better reliabilty than *******. I may refer a few other people in the office to switch as well." - Comment from Don
"I was with ******* for 4 years at $230 a month, this is a huge savings for me, GOD BLESS YOU PEOPLE," - Comment from T.S. via Email
"Its working FABULOUSLY for me!! Holy cow...there has been so much I've been missing lately, and with this feed and Linnsoft software...I'm in the game now." - Comment from Chris R.
"I just wanted to let you know how fast and easy I found it to integrate IQFeed into our existing Java code using your JNI client. In my experience, such things almost never go so smoothly - great job!" - Comment from Nate
"DTN has never given me problems. It is incredibly stable. In fact I've occasionally lost the data feed from Interactive Brokers, but still been able to trade because I'm getting good data from DTN." - Comment from Leighton
"This is an excellent value, the system is generous (allowing for 500 stocks) and stable (and really is tick-by-tick), and the support is fantastic." - Comment from Shirin via Email
Home  Search  Register  Login  Recent Posts

Information on DTN's Industries:
DTN Oil & Gas | DTN Trading | DTN Agriculture | DTN Weather
Follow DTNMarkets on Twitter
DTN.IQ/IQFeed on Twitter
DTN News and Analysis on Twitter
»Forums Index »Product Support »DTN.IQ Client Software Support »Firewall Advice
Author Topic: Firewall Advice (5 messages, Page 1 of 1)

jlarmee
-Interested User-
Posts: 54
Joined: Jan 12, 2006


Posted: Mar 10, 2009 02:58 PM          Msg. 1 of 5
Hi. My client is trying to set up a more thorough firewall on his server and it seems like connecting to IQFeed keeps getting in the way. Whenever we tighten the screws, it seems like the IQFeed connection doesn't work and we have to back off.

Is there some general information on the ports that IQFeed uses, and the servers the ports should be allowed to access? (I'm far from an expert in this topic -- so let me know if that question even made sense!)

Thanks in advance for your help!

DTN_LorenF
-DTN Technical Support-
Posts: 228
Joined: May 11, 2004


Posted: Mar 10, 2009 03:49 PM          Msg. 2 of 5
jlarmee, this is going to be dependant upon what exactly you are needing to function. The various types of data in IQFeed are transmitted over different ports to the client.

We have 2 server farms currently which are commonly referred to as the "148" server farm and the "156" server farm. Each farm is identical in IPs and ports and customers are load balanced between them so you might need duplicate firewall rules setup to allow for connections to each server farm. Each server farm operates on two separate port ranges as well that are copied and 55000 apart from each other (one in the 5000 range and the other in the 60000 range). Keep in mind also that ALL connections for IQFeed originate from the client application so no port forwarding should be needed.

The preferred method is to open the entire subnet on the following port ranges.
66.112.156.XXX ports 5000 - 5050 and 60000 - 60050
66.112.148.XXX ports 5000 - 5050 and 60000 - 60050

The reason for this is that IP addresses and port numbers change on occasion (adding or subtracting servers). This will allow you optimal use of the feed while having very little potential to having to revisit firewall configuration at a later time.

If you need a more detailed (or "tighter security") model, the following information can be used but keep in mind that we do modify these ports occasionally for various reasons so it is entirely possible these will change and cause feature(s) of the feed to no longer work.

The "156" server farm.
66.112.156.210 - 66.112.156.214 ports 5000, 5001, 5005, 5009, 5014, 5015, 5018, 5020, 5050, 60000, 60001, 60005, 60009, 60014, 60015, 60018, 60020, 60050
66.112.156.220 - 66.112.156.229 ports 5002, 5003, 5004, 5013, 60002, 60003, 60004, 60013
66.112.156.110 - 66.112.156.119 ports 5002, 5003, 5004, 5013, 60002, 60003, 60004, 60013

The "148" server farm is exactly the same except the ip addresses.
66.112.148.210 - 66.112.148.214 ports 5000, 5001, 5005, 5009, 5014, 5015, 5018, 5020, 5050, 60000, 60001, 60005, 60009, 60014, 60015, 60018, 60020, 60050
66.112.148.220 - 66.112.148.229 ports 5002, 5003, 5004, 5014, 60002, 60003, 60004, 60014
66.112.148.110 - 66.112.148.119 ports 5002, 5003, 5004, 5014, 60002, 60003, 60004, 60014

let us know if you need anymore information

-edited for updated settings-
Edited by DTN_Steve_S on Jun 1, 2011 at 03:19 PM

jlarmee
-Interested User-
Posts: 54
Joined: Jan 12, 2006


Posted: Mar 10, 2009 05:24 PM          Msg. 3 of 5
Thanks!

This very helpful!. I think the entire subnet and port range should do it. We shouldn't need to get to the detailed list. I'll keep that under my hat.

-- Jay

Arnold
-Interested User-
Posts: 1
Joined: Apr 17, 2015


Posted: Apr 17, 2015 05:53 AM          Msg. 4 of 5
Quote: jlarmee, this is going to be dependant upon what exactly you are needing to function. The various types of data in IQFeed are transmitted over different ports to the client.

We have 2 server farms currently which are commonly referred to as the "148" server farm and the "156" server farm. Each farm is identical in IPs and ports and customers are load balanced between them so you might need duplicate firewall rules setup to allow for connections to each server farm. Each server farm operates on two separate port ranges as well that are copied and 55000 apart from each other (one in the 5000 range and the other in the 60000 range). Keep in mind also that ALL connections for IQFeed originate from the client application so no port forwarding should be needed.

The preferred method is to open the entire subnet on the following port ranges.
66.112.156.XXX ports 5000 - 5050 and 60000 - 60050
66.112.148.XXX ports 5000 - 5050 and 60000 - 60050

The reason for this is that IP addresses and port numbers change on occasion (adding or subtracting servers). This will allow you optimal use of the feed while having very little potential to having to revisit firewall configuration at a later time.

If you need a more detailed (or "tighter security") model, the following information can be used but keep in mind that we do modify these ports occasionally for various reasons so it is entirely possible these will change and cause feature(s) of the feed to no longer work.

The "156" server farm.
66.112.156.210 - 66.112.156.214 ports 5000, 5001, 5005, 5009, 5014, 5015, 5018, 5020, 5050, 60000, 60001, 60005, 60009, 60014, 60015, 60018, 60020, 60050
66.112.156.220 - 66.112.156.229 ports 5002, 5003, 5004, 5013, 60002, 60003, 60004, 60013
66.112.156.110 - 66.112.156.119 ports 5002, 5003, 5004, 5013, 60002, 60003, 60004, 60013

The "148" server farm is exactly the same except the ip addresses.
66.112.148.210 - 66.112.148.214 ports 5000, 5001, 5005, 5009, 5014, 5015, 5018, 5020, 5050, 60000, 60001, 60005, 60009, 60014, 60015, 60018, 60020, 60050
66.112.148.220 - 66.112.148.229 ports 5002, 5003, 5004, 5014, 60002, 60003, 60004, 60014
66.112.148.110 - 66.112.148.119 ports 5002, 5003, 5004, 5014, 60002, 60003, 60004, 60014

let us know if you need anymore information

-edited for updated settings-
Edited by DTN_Steve_S on Jun 1, 2011 at 03:19 PM
--- Original message by DTN_LorenF on Mar 10, 2009 03:49 PM
Hi Loren

Could please you confirm if this still applies ?

DTN_LorenF
-DTN Technical Support-
Posts: 228
Joined: May 11, 2004


Posted: Apr 20, 2015 07:20 AM          Msg. 5 of 5
Arnold

Yes, this still the way our server farms are setup.
 

 

Time: Tue June 18, 2019 5:00 PM CFBB v1.2.0 15 ms.
© AderSoftware 2002-2003