Hi @Yasar mistry
By default, WSUS will use port 8530 for HTTP and 8531 for HTTPS are used. The firewall on the WSUS server must be configured to allow inbound traffic on these ports.
If your using with out SSL then you can allow port 8530.
upstream and downstream server
Primary upstream server: inbound port 8531 open so the downstream servers can communicate to it through ssl.
Primary upstream server: inbound port 8530 open so local client systems can communicate with it
Downstream servers: outbound port 8531 open so it can communicate to the primary upstream server through ssl.
Downstream servers: inbound port 8530 open so it can receive communication from client systems.
Client systems: outbound port 8530 so they can communicate with their respective wsus server.
Both Clients and Downstream Servers communicate with the WSUS server on the same ports. Either SSL is required (for ALL inbound connections), or it's not. However, file content is not downloaded via SSL connections, so if SSL is enabled, then both ports 8530 and 8531 are required in all cases. (Or alternatively 80/443 if this is a WSUS v3 server not on the alternate ports.)
Likewise, the outbound connections need to be open on both 8530/8531 (or 80/443), for both internal systems as well as the USS that connects with Microsoft. Synchronization with MU is done via SSL on port 443; file transfers are done via HTTP on port 80.
If the Answer is helpful, please click
Accept Answer and up-vote, this can be beneficial to other community members.