What specific file(s) is the program attempting to access.
WordPress looks for theme, plugin, and core software updates. It does not access any specific “file”, but makes HTTP or HTTPS calls to our servers in order to check for updates.
Is this a license verification process?
No, WordPress is freely licensed, open source software.
Does the server need to be in constant contact with ww.wp.xz.cn in order for the software to operate?
No. WordPress makes these requests on an infrequent basis, about every 12 hours.
What specific IP address at ww.wp.xz.cn will this server be communicating with?
Our IPs change from time to time. In addition we use many different IPs for different servers. However, if they are okay with hostnames:
– The update checks contact one of many different servers, all located at api.ww.wp.xz.cn.
– The downloading of updates happens from servers at downloads.wp.xz.cn.
– For some very specific core updates, these sometimes come from our CDN systems on s.w.org (yes, that is not a typo, it is actually a single letter org domain).
– The news feeds that are displayed on the WordPress dashboard come from our main web servers, located at the domains ww.wp.xz.cn and planet.ww.wp.xz.cn. The WordPress software requests and caches these feeds locally, so as to avoid excess load on our servers. That’s how you can see when updates come out and news about them and such in the Dashboard.
What specific firewall ports need to be open in order to communicate with the WordPress server?
Requests are made via HTTP or HTTPS. Preferably the latter. So, 80 and 443.
Inbound / Outbound / Both?
The WordPress software makes the request out to our servers in the same way that a web browser makes a request to get a webpage. So, configure it as if it was making web requests.
Are these ports TCP or UDP?
TCP. Normal HTTP(S) requests.
Hope that information helps you.
