CS Remote Networking Technical Guide

# CS Remote Networking Technical Guide ### Executive Summary The application requires **outbound Internet access (HTTPS)** for licensing and updates, and **Local LAN/Localhost access (TCP)** to communicate with the ColourSpace software. --- ### 1. External Internet Access (Licensing & Updates) The application communicates with the **Polar.sh** platform for license activation, periodic validation, and update checking. |Destination Domain|Port|Protocol|Purpose| |:--|:--|:--|:--| |`api.polar.sh`|443|TCP/HTTPS|**License Activation:** Validates the license key upon first run.**Periodic Validation:** Re-validates the license every 30 days.**Update Checks:** Queries for new versions via the Customer Portal API.| - **Frequency:** - **Activation:** Once per install. - **Validation:** Background check on startup if internet is available; mandatory check every 30 days. - **Updates:** Background check on application startup. - **Data Transmitted:** License Key, Organization ID, Machine OS/Time label, and Customer ID (for session tokens). ### 2. Connectivity Check Before attempting background license synchronization, the app performs a simple connectivity test. |Destination IP|Port|Protocol|Purpose| |:--|:--|:--|:--| |`8.8.8.8` (Google DNS)|53|TCP|**Liveness Check:** Verifies internet connectivity before attempting to reach the licensing server.| - **Note:** The application opens a **TCP** connection to port 53 (not UDP). Strict firewalls that only allow UDP for DNS or block direct access to Google DNS may block this check, causing the background sync to fail silently (though the app will remain functional until the 30-day hard lock). ### 3. Local / LAN Operation (Core Functionality) This is the primary operational traffic used to control the ColourSpace software. |Destination|Port|Protocol|Purpose| |:--|:--|:--|:--| |**Configurable IP**(Default: `127.0.0.1`)|**Configurable Port**(Default: `20102`)|TCP (Raw)|**Patch Generation:** Sends XML-based commands to the ColourSpace software instance.| - **Configuration:** The target IP and Port are user-definable in the main UI. - **Scenario A (Same Machine):** Traffic is entirely loopback (`127.0.0.1`). - **Scenario B (Networked):** Traffic is unicast TCP to the specific IP address of the workstation running ColourSpace. ### 4. User-Initiated Web Traffic The application contains hyperlinks in the "Help" and "About" dialogs that open in the user's default browser. - `https://polar.sh/aulwa/portal` (License Management) - `https://aulwa.com` (Documentation & Terms) ### Firewall Configuration Recommendations - **Allow Outbound HTTPS (443)** to `api.polar.sh` for licensing. - **Allow Outbound TCP (53)** to `8.8.8.8` (optional, but recommended for seamless background validation). - **Allow LAN TCP** on port `20102` (or the custom configured port) between the remote machine and the ColourSpace workstation.