to Homepage
You are located in service Firewall
General information
IT Center Help

You are located in service: Firewall

Server Registration and Firewall Administration
Print page

Server Registration and Firewall Administration

guide

On this page, you will learn how to request, delete, and manage firewall registrations.

 

Register servers 

Registration form 

Servers can be registered via the Firewall Registration Form.

Registration via email 

Alternatively, registered contact persons can register servers via email to noc@rwth-aachen.de. In order to facilitate our work, please use the following format:

# Service1

134.130.X.A Name_A.domain.rwth-aachen.de

134.130.X.B Name_B.domain.rwth-aachen.de

134.130.X.C Name_C.domain.rwth-aachen.de

# Service2

134.130.X.C Name_C.domain.rwth-aachen.de

134.130.X.D Name_D.domain.rwth-aachen.de

134.130.X.E Name_E.domain.rwth-aachen.de

  • Please use a tab character between the IP address and the fully qualified domain name (format: host.domain.rwth-aachen.de) of the computer if possible.
  • Services and their SSL variants are not unlocked simultaneously, please explicitly specify SSL/non-SSL.
  • If you don't know the name of the service, please specify the protocol and port number.
  • If the event that we are managing a packet filter on your router, please include the note 'Gebäudefilter' (building filter) inside the text.

Key information on server registrations 

We only enable computers that have an "alive" service so that connectivity and security tests (Sources: 134.130.3.0/25, 134.130.5.90) can be performed. To check the used ports enter the following in the Windows command prompt:

netstat -an

In addition, only the latest software version should be used and in use of encryption a valid certificate needs to be installed.

 

Access to RWTH from the Internet is subject to the condition that all security updates are installed on the servers and vulnerabilities with a rating of more than CVSS 5.0 are promptly eliminated.  The IT Center can block access from the Internet if vulnerabilities are not resolved or if the vulnerability scanner does not have sufficient access to the server.

 

As a general rule, we configure the firewall based on typical protocol and port numbers of specific network applications or services. In particular, we refer to the "Assigned Internet Protocol Numbers" and "Service Name and Transport Protocol Port Number Registry" of IANA. Exceptions are made only in duly justified cases.

 

Please note that we only enable computers that are registered in the DNS. Additionally, we only enable individual hosts for a specific service, not entire networks.

Deregister a server 

Servers can be deregistered via email to noc@rwth-aachen.de.

View existing registrations 

Existing registrations are listed in the Firewall Viewer (accessible within RWTH networks by registered contact persons).

 

last changed on 10/21/2025

How did this content help you?

Creative Commons Lizenzvertrag
This work is licensed under a Creative Commons Attribution - Share Alike 3.0 Germany License
Chat