When the system firewall is turned on, phones external to our network are unable to autoprovision via HTTPS. As soon as we disable the system firewall, they are able to autoprovision. We’ve tried setting the HTTPS autoprovisioning service in the firewall to Local, Other, and Internet, and it doesn’t work on any of those settings.
What is the proper setting to allow HTTPS provisioning through the firewall?
We’re using a custom port and not 443 so it shouldn’t be interfering with anything else using 443 (not sure if this applies to your answer but wanted to say it just in case)
The client networks are all unrestricted for outbound data so I don’t understand why any bi-directional traffic rules are needed. If disabling the firewall on the PBX side makes everything work, then it proves there is no restriction on their side.