System Requirements and Firewall Exceptions

In order to have a good experience using the HEIMDAL Security products, we recommend you take a look at the following requirements and configure your environment accordingly.

1. Supported Architecture and OS
2. Requirements
3. IP Addresses and Ports
4. File/process exclusions

Supported Architectures and OS

The HEIMDAL Agent is developed on the 32-bit architecture and can be installed on computers/devices with the following Architectures:

• x86
• x64
• ARM (only on Windows and macOS)

The HEIMDAL Agent can be installed on computers/devices running the following Operating Systems:

Windows

• Windows 10 (32 and 64-bit) - Support for Windows 10 32-bit stopped being offered on the 31st of March 2022;
• Windows 11 (64-bit);
• Windows Server 2012/2012 R2 (32 and 64 bit) - Support for Windows Server 2012/2012 R2 32-bit stopped being offered on the 31st of March 2022;
• Windows Server 2016 (32 and 64-bit) - Support for Windows Server 2016 32-bit stopped being offered on the 31st of March 2022;
• Windows Server 2019 (32 and 64-bit) - Support for Windows Server 2019 32-bit stopped being offered on the 31st of March 2022;
• Windows Server 2022 (64-bit);

macOS

• macOS 10.15 (Catalina);
• macOS 11 (BigSur);
  
• macOS 12 (Monterey);
• macOS 13 (Ventura)
• macOS 14 (Sonoma)
• macOS 15 (Sequoia) and above.

Linux

• Ubuntu 18.04 LTS
• Ubuntu 20.04 LTS
• Ubuntu 22.04 LTS
• Ubuntu 23.04 LTS
• Ubuntu 24.04 LTS

Requirements

Before installing the HEIMDAL Agent, make sure your device/endpoints meets the following requirements:

Windows

• Microsoft .NET Framework 4.8 or above (starting with HEIMDAL Agent version 3.7.0 RC);
• Up to 640 MB of disk space;
• At least 250 MB RAM;
• At least 3% of CPU usage when blocking a domain, up to 10% when opening the Heimdal™ Agent, and up to 40% during a scan;
• Local administrator or domain administrator permissions (if the computer is domain-joined) during the installation process;
• User permissions during execution;
• Internet access with the following ports open to traffic: port 53 (to apply the DarkLayer Guard DNS 127.7.7.x), port 443 (to filter traffic over https);
• The HEIMDAL Agent uses the following ports internally: 80 (Custom Block Page), 8001 (Application Control), 57127 (Peer2Peer).
• The HEIMDAL DNS Security Network Log Agent uses port 443.
• The Heimdal RD Viewer uses remote port: 7615. 

macOS

• At least 400 MB of disk space;
• At least 4 GB of RAM;
• Administrator permissions during the installation process;
• Manual approval of the DNS Security Extension (for OSs older than Ventura);
• Full Disk Access (for Patch & Assets and Endpoint Detection);
• Internet access with the following ports open to traffic: port 53, port 443 (to filter traffic over https);

Linux (Ubuntu)

• Microsoft .NET 6 Framework
• At least 50 MB of disk space;
• At least 4 GB of RAM;
• sudo permissions during the installation process;
• The Heimdal Agent requires the following prerequisites: curl, unzip, gnupg, lsb-release, netcat and ca-certificates;
• Internet access with the following port open to traffic: port 443;
• (The HEIMDAL Agent is not supported on Red Hat Enterprise Linux at this time, but we are working on making it support these as well).

IP Addresses and Ports

The HEIMDAL Agent needs the following domains/IP addresses to communicate with the HEIMDAL servers. If you are behind a firewall or a proxy, make sure you add the following to the whitelist/allowlist:

HEIMDAL Agent/Dashboard & Core Service

DNS Security

Application Control

Remote Desktop

Email Protection

The full list of domains and IP addresses can be found at the bottom of this page.