In order to use TinyMDM on devices connected to a network protected by a firewall, some settings are necessary. Indeed, our application uses Google’s FCM notification system, like most Android apps.

Here are the different proxy settings recommended by Google to make FCM notifications work:
Ports 5228, 5229 and 5230 must be added to the unrestricted IP whitelist. However, if you need to set up an IP restriction, you must also whitelist all the IP addresses of the IPv4 and IPv6 blocks listed in Google’s 15169 ASN (available here).

Note: the list must be updated every month.

For more information, see this link to Google’s original documentation.

In addition, you must allow the accesses regularly used by the various services of Google:

play.google.com TCP/443
android.com TCP/443
android.clients.google.com TCP/443
*.googleapis.com TCP/443
accounts.google.com TCP/443
fcm.googleapis.com TCP/443
fcm-xmpp.googleapis.com TCP/443
pki.google.com TCP/443
clients1.google.com TCP/443