Service Ports

Very Good Security (“VGS”) is the leading developer-friendly platform to collect, store, and exchange sensitive and confidential data. In order to provide this service, VGS provides customers with various integration methods across a variety of protocols. The types of services and protocols VGS exposes are based on the customer’s unique configuration and needs. Traffic destined to and from these ports is not the traffic of the customer’s customer - rather, these ports are used to provide the business to business capabilities of the solution.

VGS assigns customer integrations to an IP address and a port. The combination of an IP address and a port (or port number) is used by VGS to uniquely identify a connection endpoint and to direct data to the customer-specific service. These port numbers and IP addresses are VGS-specific, and are provided to our customers to ensure that the service works as configured and intended.

These ports may be highlighted by scanning tools as being exposed via unprivileged (non-RFC) ports, i.e. HTTPS traffic being directed at port 8443 or SFTP/SSH traffic being directed at port 8022.

These ports are utilized to enable integration with VGS by our customer’s systems, and are operating as designed. Common endpoints and ports include:

Common Non-Standard/Non-RFC Ports used by VGS

There may be additional ports in place depending on each customer’s individual needs. In the event of a finding related to the use of a non-RFC (“non-standard”) port which is not on the above list, please reach out. VGS may provide tailored documentation related to custom configurations as needed for customer-specific or specially regulated use cases.