TER0806005 Issue 1 12Firewall ConsiderationsFor PC-over-IP traffic to pass through a firewall, the firewall must be configured to support IPSEC traffic andalso have the ports in Table 4 opened.Table 4: TCP and UDP Ports Required for a PC-over-IP SystemPort Port NumberTCP Ports 21, 51, 80, 427, 443, 8000, 50000, 50001UDP Ports 53, 67, 68, 427Optional TCP port 3389 (for optional RDP mode operation)Virtual Private Network (VPN) ConsiderationsPC-over-IP technology can be securely run on public networks since all traffic is fully encrypted - 128-bit AESfor display, USB and HD audio media streams and SSL for management and configuration traffic. However, PC-over-IP technology can also operate within a hardware VPN environment as shown in Figure 5. An appropriateMTU size must be selected in the PCoIP host and portal to prevent IP packet fragmentation. The default MTUsize is 1400 bytes, which can fit well in most VPN environments.Figure 5: PC-over-IP Hardware VPN ExampleConclusionTeradici’s innovative PCoIP technology provides advanced capabilities for delivering a true PC experience overstandard enterprise IP networks. The network traffic generated by a user desktop – display graphics, keyboard,mouse, audio etc - is dynamically managed and can be highly compressed to optimize use of networkresources. This enables large-scale deployment over existing network infrastructure while maintaining a richuser experience.Additional features such as fair dynamic bandwidth sharing and the ability to impose soft and hard bandwidthconsumption limits provide optional tools for IT administrators to seamlessly integrate PCoIP technology withintheir network infrastructure. As a result, enterprises can use PCoIP technology to consolidate individual desktopPCs and workstations and gather all of the company’s applications and data storage into a single securelocation. This creates safeguards against virus incursions and security breaches while simplifying compliance,boosting reliability and enabling cost-effective desktop management.Desktop PortalBlade PC’sor WorkstationsHardwareVPNHardwareVPNDatacenter User DesktopsInternetDesktop PortalBlade PC’sor WorkstationsHardwareVPNHardwareVPNDatacenter User DesktopsInternet