Firewall Configuration
Antivirus
When virus scanners do real-time, on-access scans of the database, there is potential for serious performance penalties and corruption of the database file itself. Therefore, certain areas must be excluded from all scanning (whether it be scheduled or real-time).
Exclude the following folders, including all files and subfolders from all virus
scans.
Tip: Use C:\\Program Files\\ or
C:\\Program Files (x86)\\ as appropriate.
- Communicare folder: C:\\Program Files (x86)\\Communicare\\
- Firebird Server folder: C:\\HQbird
- Argus folder (if Argus is installed): C:\\Program Files (x86)\\Argus\\
- Database folder: D:\\
If possible, exclude the following file extensions from being scanned:
- Firebird database files: *.FDB, *.GDB
Note: If these exclusions are not possible with the virus scanner, do not use it on the
appliance server.
Firewall Exceptions
Some Communicare and third party processes rely on external connections to function.
Process | Description | Protocol | Source IP | Source Port | Destination IP | Destination port |
---|---|---|---|---|---|---|
Firebird SQL | Allow a Communicare Client to connect to a Communicare Server. Mandatory for most basic configuration. | TCP | Communicare Client IP | Random | Communicare Server IP | 3050 and 3051 |
Shared Folders | Access to the Communicare Server shared folders. All Communicare Shared folders are read-only with the exception of 'Results' if that exists. Everyone can connect to a Communicare shared folder without a password or username. | TCP and UDP | Client IP | Random | Communicare Server IP |
135...139 and 445 (Not all ports are always required, but should be configured) |
Medicare Australia | Mandatory for online claiming only. | TCP | Communicare Client IP and Server | Random | mcoe.humanservices.gov.au | http (80) |
Medicare Australia | Mandatory for online claiming only. | TCP | Communicare Client IP and Server | Random | www2.medicareaustralia.gov.au/pext | https (443) |
Medicare Australia - AIR | Mandatory for AIR web page only. | Communicare Client IP and Server | Random | www1.medicareaustralia.gov.au | https (443) | |
Health Identifier Service | Mandatory for online claiming only. | Communicare Client IP and Server | Random | www3.medicareaustralia.gov.au | https (443) | |
My Health Record | Mandatory for MHR | Communicare Client IP and Server | Random | services.ehealth.gov.au | https (443) | |
ERX | Mandatory for electronic prescriptions | TCP | Communicare Client IP | Random | APPSERVERNAME:3440/StandardAdapterService.svc/outbound Replace APPSERVERNAME with the name of the Appliance Server or VM that Communicare is installed on. |
3440 |
Shared Electronic Health Records - My eHealth Record (MeHR) | All NT Communicare Clients must be able to make outgoing connections to the NT HealthConnect repository | TCP | Communicare Client IP and Server | Random | repository.healthconnect.nt.gov.au | 8080 |
Secure Electronic Messaging System - Argus 6 | For the Communicare server to use a SEMS it must connect to an Argus server or run an Argus server on the Communicare server. | TCP | Communicare Server IP | Random | Argus server | 60000 (or as set up on Argus server) |
National Health Services Directory | TCP | Communicare Server IP and Communicare Client IP | Random | humanservicesdirectory.vic.gov.au | https (443) | |
National Health Services Directory | TCP | Communicare Server IP and Clients | Random | www.connectingcare.com | https (443) | |
SMS Messaging | Allow the Communicare server to send SMS messages. | TCP | Communicare Server IP | Random | webservices.communicaresystems.com.au | 9000 |
Communicare FTP Server | Passive mode settings. | TCP | Communicare Server IP | Random | ftp.healthconnex.com.au (101.172.166.96) | 22 |
Communicare Remote Support | Remote support using Team Viewer. | TCP | Communicare Server IP | Random | teamviewer.com | 80, 443 & 5938 |
QH VIEWER (For North West Hospital Health Services QLD only) | TCP | Communicare Client IP and Server | Random | eds.health.qld.gov.au | https (443) | |
SNOMED Terminology Browser Location | Access to link clinical item terms to SNOMED terms using the CSIRO Shrimp Server | TCP | Communicare Server IP and Communicare Client IP | Random | https://ontoserver.csiro.au/shrimp (150.229.0.213) | https (443) |
SNOMED Terminology FHIR Validation Service | Allow linked SNOMED terms on clinical items to validate. | TCP | Communicare Server IP and Communicare Client IP | Random | https://stu3.ontoserver.csiro.au/fhir (52.62.60.39) | https (443) |