Occasional Advisor
Re: Port for Java client
The listeners for TCP ports 80, 443, and 8080 are on the core. So the firewall rule would need to allow FROM the Java client TO the core with those DESTINATION ports. The source ports will be ephemeral, so the firewall rules should allow for that, ie, hardcoding the source ports to be the same as the destination ports would be too restrictive.