Subnet Access
This page summarises which ports and routes are open to what on the subnet sets.
Allowed Traffic
All Subnets (Data, Private, Public)
| Traffic type | Port ranges | Source/Destination |
|---|---|---|
| Ingress & Egress | All | Business unit VPC |
| Ingress & Egress | All | Inter business unit VPCs where requested |
| Ingress & Egress | All | Private address ranges which are not part of the Modernisation Platform (Note, these will be blocked by the Firewall unless appropriate rules are in place) |
| Egress | 443 | 0.0.0.0/0 |
| Ingress | 1024 - 65535 | 0.0.0.0/0 |
Public Subnets
| Traffic type | Port ranges | Source/Destination |
|---|---|---|
| Ingress | 443 | 0.0.0.0/0 |
| Ingress | 1024 - 65535 | 0.0.0.0/0 |
| Egress | All | 0.0.0.0/0 |
Protected Subnets (for VPC endpoints)
| Traffic type | Port ranges | Source/Destination |
|---|---|---|
| Ingress | 25 | Business unit VPC |
| Ingress | 443 | Business unit VPC |
| Ingress | 587 | Business unit VPC |
| Ingress | 5439 | Business unit VPC |
| Egress | 1024 - 65535 | Business unit VPC |
This page was last reviewed on 26 August 2025.
It needs to be reviewed again on 26 February 2026
by the page owner #modernisation-platform
.
This page was set to be reviewed before 26 February 2026
by the page owner #modernisation-platform.
This might mean the content is out of date.