Avast for Business - which Ports to open in pfSense Firewall?

[REDACTED]

Hey folks,

we have a school with about 120+ Workstations behind a pfSense Firewall and would like to installa Avast for Business.

But everytime we start the Installer it keeps crashing with an error, that it cannot connect to the Avast-Servers - so Installerfiles can be downloaded.

What we tried:  we just put one of the Workstations into DMZ and it works like a charme - but we cannot just take all the Workstations into DMZ :-/ especially for later definition updates..

Can anyone tell me how to set the pfSense Firewall rules for Avast Setup and later definition Updates?
Or just tell me the usual Ports TCP/UDP for Avast?

Thank you for your support :-)

Marcus

[Arch2]

The client/cloud server communication is completed using the following ports. To ensure proper communication to the cloud portal please make sure all ports below are open and also the whitelisting of *.avast.com.

- http/80 (updates)
- https/443 (FFL encryption key negotiation)
- TCP, UDP/ 443, 53 for secure DNS
- *.avast.com

[basic2]

What do IPs add to Firewall rule if Firewall settings did not support L7(URL-base) policy.

For example: *.avast.com -> xxx.xxx.xxx.xxx

Thanks.

[REDACTED]

If you want to allow by IPs, then try these.

77.234.40.0/21 (akamai)

Thanks