====== Firewall and access rights ====== ===== Approvals ===== The Pcc main directory must be shared on the server. It should also be noted that the share authorisations must be installed for each Pcc user. All Pcc users, including the local system account, require full rights (read, write, change, delete). {{de:technik:firewall:freigabe.png?|}} ===== Windows authorisations ===== In the Windows permissions, all Windows users who use Pcc must be authorised to read, create, change and delete files in the Pcc folder and all subdirectories. {{de:technik:firewall:sicherheit.png?|}} If required, it is possible to start Pcc under a different Windows user with the appropriate rights. For some special functions, Pcc creates new folders in the data directory. It must be ensured that this is included in the authorisations. ===== Firewall settings, routing ===== The following ports must be enabled for smooth operation with Pcc: ==== Public, Internet (outgoing only!) ===== :!: These ports must only be **//outgoing//** be opened (In-To-Out)! These ports must of course **not** be accessible from the Internet. ^ TCP 80 (HTTP), 443 (HTTPS), 21 (FTP) | Intranet/Pcc updates: www.pccaddie.com and update.pccaddie.com | * The following domains are systematically accessed: * www.pccaddie.com * update.pccaddie.com * www.pccaddie.net * %%sms.pccaddie.net%% * %%gateway.pccaddie.net%% * www.startzeitenserver.de * iis.dgv-intranet.de * www.dgv-intranet.de * nominatim.openstreetmap.org * In Switzerland, the following domains are required instead of dgv-intranet.de: * iis.asg-intranet.ch * www.asg-intranet.ch * www.golfsuisse.ch * In addition, for connection to the Swiss Golf Network: * www.swissgolfnetwork.ch * t-time.swissgolfnetwork.ch :!: Please note that when using a proxy server, these ports must also be released. ==== Local, within the company network ==== === from workstations to the PC CADDIE database server === ^ UDP 6262 | ADS [[en:sonstigefunktion:advantagedatabaseserver]] | === from the PC CADDIE card system server to the machines === online ball machines, doors, vending machines, barriers, caddie boxes, etc..: ^ TCP 950, 951, 966, 967 | necessary for operation | ^ TCP 23, 80 | for configuration and fault diagnosis | :!: If you are working with several subnets, please remember the correct routing between them.