This site is for AVG Business products only. For articles on Avast Business products, see Avast Business Help. If you are in the right place but cannot find what you are looking for, please contact AVG Business Support for further assistance.

Firewall Requirements

This Article Applies to:

  • AVG AntiVirus Business Edition
  • AVG Internet Security Business Edition
  • AVG File Server Business Edition
  • AVG Email Server Business Edition

 

For overall functionality, and to enable the Antivirus client to authenticate/update, you must allow certain ports and URL addresses through the firewall or proxy server on your endpoints.

Unmanaged Local Clients

Ports

  • TCP 80 – Internet vulnerability checks and feature updates
  • TCP/UDP 443 – Encrypted communication
  • TCP 7500 - For push notification services

URLs

  • *.avast.com
  • *.avg.com
  • *.avcdn.net

Managed Local Clients

Ports

  • TCP 80 – Internet vulnerability checks and feature updates
  • TCP/UDP 443* – Encrypted communication
  • TCP 8080*, 8090* – Communication between the On-Premise Console and clients within local network
  • TCP 4158 – Mirror, for local updates within local network
  • TCP 7074 – Remote Deployment within local network
  • TCP 7500 - For push notification services

*These default ports can be modified during or after On-Premise Console setup if needed. Note that any changes should be reflected in the firewall configuration.

URLs

  • *.avast.com
  • *.avg.com
  • *.avcdn.net
  • URLs required by application vendors (if using Patch Management - it downloads the necessary patches directly from the vendors; therefore, the connections must be allowed for the service to operate correctly)

Geoblocking

AVG web services are hosted in many countries around the world. Therefore, we do not recommend geoblocking in your firewall settings. If geoblocking is necessary, we recommend setting URL Allow rules to supersede geoblocking, so AVG traffic can still be allowed.