Here is a list of all default ports and processes commonly used in Maitre’D 8. Use this list to help in building rules and exception for firewalls and Anti-Virus software.
TCP Port 443 Traffic: Inbound and Outbound Protocol: TCP Services: https over SSL/TLS Applications: N/A Network: LAN, WAN and Internet This is the port used by Microsoft B.I.T.S. to securely transfer files from the Maitre’D Back-Office over to Posera’s secured file server. Microsoft B.I.T.S. uses https over SSL/TLS for secure transfer, so this port needs to be open for outbound traffic. Also, this port is required for all https traffic, so it needs to be open for inbound traffic as well.
Traffic: Inbound and Outbound Protocol: TCP Services: Applications Applications: BOSRV.EXE, POS.EXE, STARTER.EXE. Network: LAN only This is the default port used by the Maitre’D Back-Office server to initiate communication with the workstations and needs to be open for inbound and outbound traffic on the local network only. This port is user-configurable in Server Control / View / Options / Advanced / TCP/IP Port.
Traffic: Inbound and Outbound Protocol: TCP Services: Applications Applications: All Maitre’D applications Network: LAN only This port is used by workstations to initiate communication with the Maitre’D Back-Office server and needs to be open for inbound and outbound traffic on the local network only. This port number could change depending on what has been configured as default communication port. The port number will always be Default Port + 1. For instance, if the default port is set to 5000, then workstations will use TCP port 5001 to initiate communications.
Traffic: Inbound and Outbound Protocol: TCP, UDP Services: Applications Applications: BOSRV.EXE, POS.EXE, STARTER.EXE, OCS.EXE, MDTransServer.exe, MDTransClient.exe, UtilityCenter.exe Network: LAN only This port is used by the Maitre’D OCS configuration to communicate between the Maitre’D Back-Office server and all the OCSes operating in the restaurant. This port needs to be open for inbound and outbound traffic on the local network only. Note that UDP broadcasts are used on this port to discover peers.
Traffic: Inbound and Outbound Protocol: TCP Services: Applications Applications: BOSRV.EXE, MDMonitor.exe Network: LAN only This port is used by the Maitre’D Back-Office server to communicate with the Maitre’D Monitor Service (MDMonitor.exe). This port needs to be open for inbound and outbound traffic on the local network only.
Traffic: Inbound and Outbound Protocol: Varies according to service provider Services: Varies according to service provider Applications: BOSRV.EXE, BOSRVEFT.EXE, varies according to service provider. Network: LAN and Internet Ports used for EFT vary according to processors / acquirers. Please review the documentation provided by your EFT processor / acquirer to learn which ports need to be opened. For some interfaces, the TCP port is user-configurable through EFT / View / Options / Interface. In all cases, ports used need to be opened for inbound and outbound traffic over the local network as well as over the internet.
Room Charge Interface (TCP/IP based protocols only) Traffic: Inbound and Outbound Protocol: Varies according to service provider Services: Varies according to service provider Applications: BOSRV.EXE, varies according to service provider. Network: LAN only The TCP port used for the Room Charge / Hospitality / PMS interface is userconfigurable from Server Control / View / Options / Room Charge / Communication / IP Port. Please review the documentation provided by your Room Charge / Hospitality / Property Management software provider
Frequent Diner Interface (Third-party interfaces using TCP/IP only)
Traffic: Inbound and Outbound Protocol: Varies according to service provider Services: Varies according to service provider Applications: BOSRV.EXE, varies according to service provider. Network: LAN and Internet The TCP port used for the Frequent Diner interface is user-configurable from Server Control / View / Options / Frequent Diner / Communication / TCP Port. Please review the documentation provided by your Frequent Diner interface provider.
Traffic: Inbound and Outbound Protocol: Varies according to service provider Services: Varies according to service provider Applications: BOSRV.EXE, BOSRVEFT.EXE, varies according to service provider. Network: LAN and Internet The TCP port used for the Gift Certificate interface is user-configurable from Server Control / View / Options / Gift Certificate / Communication / TCP Port. Please review the documentation provided by your Gift Certificate interface provider.
Traffic: Inbound and Outbound Protocol: Varies according to service provider Services: Varies according to service provider Applications: BOSRV.EXE, MDProcessor.exe, varies according to service provider. Network: LAN and Internet The TCP port used for the Table Management interface is user-configurable from Server Control / View / Options / Table Management / Port. Please review the documentation provided by your Table Management interface provider.
Traffic: Inbound and Outbound Protocol: Varies according to service provider Services: Varies according to service provider Applications: BOSRV.EXE, MDProcessor.exe, varies according to service provider. Network: LAN and Internet
The TCP port used for the Schedule interface is determined by the service provider. In Maitre’D, a URL to communicate with the service provider is configured in Time & Attendance / View / Options / Schedule Interface. Please review the documentation provided by your Table Management interface provider.
In Maitre’D 8, Threaded Communication is always enabled and cannot be disabled. This means that more ports are actually used by Maitre’D to communicate with workstations. With Threaded Comms, Maitre’D receives data over ports 1001 and 1002, and then replies to the workstation over another port so that TCP Ports 1001 and 1002 remain free.
The port number that will be used by Maitre’D to reply to the workstation is determined by the Windows network driver. Typically, the first available port will be used. These extraneous ports are used for outbound communication only, so they should not be blocked by your local firewall. However, firewalls on the receiving end need to be able to accept communication on those ports.
In order to ensure smooth operations, rules should be added to firewalls and anti-virus software so that the following processes and applications are never blocked or scanned:
This is the Main Back-Office server process which needs to be running at all times for your Maitre’D system to work. This process needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
This is the process managing all Electronic Funds Transfer (EFT) transactions. This process needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network as well as over the internet
This application is actually the Report Center module. It does not need to communicate through firewalls, but it does need to be excluded from virus scans. Historically, this application was often viewed as a virus by many major Anti-Virus suites, and was also very often blocked by Windows’ Data Execution Prevention engine. To ensure smooth operation of reports, this application needs to be excluded from any scan or security feature which can potentially block it.
This is the process that manages the Maitre’D Schedule Interface and the Table Management interface. This process needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network as well as over the internet.
Executable name: MDTransServer.exe This service manages communications between Maitre’D and OCS devices on the network. This service needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: MDTransClient.exe
This service manages communications from OCS devices on the network. This service needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: MDMonitor.exe
This service oversees special operations with the workstations and also manages the posting of transactions to the SQL Database. This service needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
In order to operate properly, Maitre’D 8 requires other services to be running. These services are generally provided by Microsoft, and are automatically configured during the installation of Maitre’D 8.
Executable name: C:\Windows\System32\svchost.exe -k netsvcs
Transfers files in the background using idle network bandwidth. If the service is disabled, then any applications that depend on BITS, such as Windows Update or MSN Explorer, will be unable to automatically download programs and other information.
The Maitre’D Communication Server and Maitre’D Monitor services are both dependant on this service. It needs to be running at all times. This service needs to be excluded from virus scans and allowed through the firewall for inbound and outbound communication on TCP Port 443, for the local network, across corporate WANs and over the internet.
Executable name: fdlauncher.exe
Service to launch full-text filter daemon process which will perform document filtering and word breaking for SQL Server full-text search. Disabling this service will make fulltext search features of SQL Server unavailable.
This service needs to be running at all times, be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: Sqlservr.exe
Provides storage, processing and controlled access of data, and rapid transaction processing. This service needs to be running at all times, be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: SqlAgent.exe
Executes jobs, monitors SQL Server, fires alerts, and allows automation of some administrative tasks. This service needs to be running at all times, be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: Sqlbrowser.exe
Provides SQL Server connection information to client computers
This service needs to be running at all times, be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: ReportingServicesService.exe
Manages, executes, renders, schedules and delivers reports.
This service needs to be running at all times, be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.
Executable name: SQLWriter.exe
Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure.
This service needs to be running at all times, be excluded from virus scans and allowed through the firewall for inbound and outbound communication across the local network only.