Here is an overview of the system requirements for Ship, Track, and Portal including ports, web services, and IP addresses used.
Ship
On-premises system requirements
| Platform | Windows Edition | Minimum hardware | Software requirements |
| On-premises Server |
Server versions: Windows Server 2022 Windows 10 - 11 |
|
|
| On-premises Client |
Server versions: Windows Server 2019 |
|
|
It is possible to install On-premises on a shared server but we recommend using a dedicated server. This will ensure more stable performance. We also do not recommend installing On-premises on a domain controller. Running On-premises Clients on a different network than the On-premises server is an unsupported solution.
Cloud and Drop Zone requirements
| Platform | Operating Systems | Minimum hardware | Supported Browsers |
| Ship Cloud and Portal |
Server versions:
Windows 10 - 11 |
|
|
| Drop Zone |
Server versions: Windows Server 2016 Windows Server 2019 Windows Server 2022 PC versions (enterprise / pro): Windows 10 - 11 |
|
Running https is required. |
Drop Zone URLs
- http://ws2.consignorsupport.no
- http://ws.consignorsupport.no
- http://wsm.consignorsupport.no
- https://www.nshiftportal.com
Examples of requests made by drop zone
- http://ws2.consignorsupport.no/ResourceCenter/Gateway.asmx
- http://ws.consignorsupport.no/MessageHub/MessageHub.asmx
- http://wsm.consignorsupport.no/StorageCenter/Gateway.svc
- https://www.nshiftportal.com:443/ticket/token
- https://www.nshiftportal.com:443/ticket/api/tlic/actors
- https://www.nshiftportal.com:443/ticket/api/tlic/upload
- https://www.nshiftportal.com:443/ticket/api/tlic/callshipmentserver
- http://ws.consignorsupport.no/ClientAnalytics/CollectAppData.asmx
Date and time
Date and time must be set correctly on your system to ensure the best performance. Incorrect date and time on your server may cause performance degradation and missing or invalid data in Portal. It is also important to use the correct date and time if you are using our APIs to make sure security tokens are valid.
Check the current date and time on www.timeanddate.com. If your system is in sync within a 5-minute margin of the time on this page it should be correct.
Label size
Labels are optimized for thermal labels sized 100x192 mm (EU+international) or 4x6 inch (US). Larger-sized labels will also do but please note that if you are using smaller-sized labels, only the labels from selected carriers will be printed correctly.
Network requirements and ports
Ports in use by Ship externally:
TCP 80/443 (HTTP/HTTPS - Ship uses a handful of web services, read more in this section: Ship web services and URLs.
TCP 21 (FTP/FTPS - Ship may be configured to use FTP/FTPS, if you are uncertain about your configuration please contact your local Customer Service department)
TCP 9999 (SFTP - Ship may be configured to use SFTP, if you are uncertain about your configuration please contact your local Customer Service department-)
TCP 25 (SMTP - Ship may be configured to use SMTP (Mail), if you are uncertain about your configuration please contact your local Customer Service department.)
Local ports in use by Ship:
52346 (In use by client to connect to server).
52345 (In use by clients when fetching updates from the server).
52347 (In use by the server for a local process "import.exe" running an integration module).
52348 (In use by the server for a local process "JobExecutor.exe" running multiple tasks).
Note: These local ports can be configured, contact your local Customer Service department if this is needed.
Note that Ship is a software that uses MS SQL Server for its database, the database communication is done by both server and client. See Microsoft's site for details on network requirements: https://support.microsoft.com/en-us/kb/287932.
Secure data transfer
Web Services
We have secure data transfer (HTTPS) between all Ship internal web services.
Exceptions are 3rd party web services, which do not support secure connections, i.e. transmit of data to carriers (EDI).
Ship On-premises
All web services called from On-premises can use HTTPS if the option is activated in the On-premises settings. FTP depends on configuration. We support FTP, FTPS and SFTP.
SMTP depends on the configuration (e.g. mailback).
Ship Cloud/Shipment Server API
The communication protocol is HTTPS (port 443).
Data upload to Portal
The communication protocol is HTTPS (port 80).
Drop Zone
Drop Zone always uses ports 80 and 443 or 8089. It is a configuration choice to use either port 443 with SSL/TLS protocol, or port 8089 without. Port 8089 may be configured to another number.
SPF record
Some customers are using nShift's SMTP server along with their own email server on their own domain. It is mandatory to add an SPF record to your domain, to avoid emails sent through nShift’s SMTP server being classified as spam.
An SPF record is a txt record added to your domain’s DNS and is specific for each domain.
Example of an SPF record including nShift's SMTP servers:
v=spf1 mx include:spf.protection.outlook.com include:_spf.consignor.com ~all
You MUST include the "include:_spf.consignor.com" if you are sending e-mails from our solution.
Read more about SPF:
- https://support.google.com/a/answer/33786?hl=en
- https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/set-up-spf-in-office-365-to-help-prevent-spoofing
Folder security
Folder security - On-premises server:
When installing an On-premises server, it is required that the user executing the installation package is a local administrator. Following that it is expected that the user (or 'Local System account' running our local service "Consignorserver" has local administrator rights. If the Consignorserver service is not run with local administrator rights, not all functionalities will run properly.
Folder security - On-premises client:
The user logged on to Windows needs to have access to read the local folder where the On-premises client is installed (by default: C:\Program Files (x86)\Consignor client\
Every user that opens up the On-premises client will try to create a folder with configuration files under C:\Users\<username>\appdata\roaming\Consignor\Consignor - to be able to create and maintain these configuration files the Windows user account should have proper access here.
NOTE: After an update to the On-premises server, it will run the process UpdateClient.exe (found in the Consignor client installation folder). The user that opens up the client needs to have read and write access to the Consignor client installation folder.
Folder security for file-drop integration:
When using file drop integration it is required that the service Consignorserver has access to read and write to the configured folders.
Printer requirements
Printer requirements - On-premises client:
The user logged on to Windows needs to have the "Print" permission to the printer driver - On-premises by default tries to check printer status which requires the security permission "Manage this printer". This status check can be turned off if needed.
Printer requirements - On-premises server:
Regular printing requirements on server. This method has the same printer requirements as the On-premises client has.
Automated printing requirements on server:
The automated printing (auto print etc) is executed by the local service 'Consignorserver', and this service needs the proper rights. Read more here: Printer setup in nShift On-premises.
Ship web services and URLs
Ship uses several web services, we recommend that the web services mentioned below are whitelisted in firewalls, etc.
Our servers run mainly on these sites for web services outgoing on port 80 / 443:
https://ws2.consignorsupport.no
https://ws.consignorsupport.no
Our web services support TLS 1.2
Address lookups, drop point validation, etc:
https://ws2.consignorsupport.no/AddressLookupWS/Main.asmx
API backend communication
https://internal-api.nshiftportal.com
Authentication and login
https://account.nshiftportal.com
Automatic refill of shipment numbers:
https://ws.consignorsupport.no/BarcodeRefillWS/Barcode.asmx
Software updates:
https://ws2.consignorsupport.no/consignorDataUpdate/ConsignorDataUpdate.asmx
DG Office
https://ws.consignorsupport.no/DangerousGoods/DGService.asmx
https://ws2.consignorsupport.no/DangerousGoods/DGService.asmx
EDI file transmit:
https://ws2.consignorsupport.no/SendingEdifacts/SendingEdifacts.asmx
https://ws.consignorsupport.no/SendingEdifacts/SendingEdifacts.asmx
Resource Center for AutoUpdates
https://ws2.consignorsupport.no/ResourceCenter/Gateway.asmx
https://ws.consignorsupport.no/ResourceCenter/Gateway.asmx
Routing Codes:
https://ws2.consignorsupport.no/RoutingCodes/RoutingCodes.asmxhttp://ws.consignorsupport.no/RoutingCodes/RoutingCodes.asmx
Storage Center:
https://wsm-aws.prod.edi-soft.no/StorageCenter/Gateway.svc
Subscription Service (deprecated - see section under nShift Portal)
IdentityServer: https://www.consignorportal.com
SubscriptionServer: https://api.consignorportal.com
Upload of shipments to Portal:
https://api.consignorportal.com/ApiGateway/
Some carriers might also have specific web services to function properly.
You might also see all our web services and their functions in the configuration file located at C:\Consignor\Consignor\LiveUpdate\Config\FactorySettings\WebServerConfiguration.xml
Our web services might run from both client and server.
See also how to set up Proxy settings here.
NB: Even if you can access the web service through your browser but not Ship it could be proxy settings in the browser.
Encodings support
We support the following encodings in import and import upload files:
- UTF8 without BOM
- ANSI
Track
Scan App requirements
Scan App is available for Android and iOS. Scan App runs on iOS 11 or later or Android 5 or later. It is recommended to always keep the app updated to the latest version.
IP addresses used by Scan App Pro
Use these IP addresses if you need to use a fixed IP address for Scan App Pro.
The following 5 IP addresses are in use until May 7, 2023:
- 108.128.248.209
- 99.81.216.63
- 54.194.215.197
- 3.33.142.248
- 15.197.148.245
From May 7, 2023, the following IP address will be used and replace the 5 old IPs:
- 13.248.199.199
- 76.223.93.225
- 13.248.195.215
- 76.223.80.201
- 75.2.23.193
- 99.83.208.216
- 75.2.125.199
- 99.83.241.202
If you get a message saying "No internet or network wrongly configured!" your phone is not able to access the Internet or you may have firewall settings blocking the access on your network.
Domains to whitelist for camera scanning:
Main server: https://mlts.dynamsoft.com, port: 443
Standby server: https://slts.dynamsoft.com, port: 443
nShift Portal
Portal DNS Servers to be whitelisted
Some customers need to whitelist DNS/IPs in their firewall or FTP. Here's an overview of the IP addresses used:
Portal Gateway (ReturnData & ExportData)
portalgateway.consignorportal.com (54.229.144.217 and 52.48.142.186)
APIs (there will be multiple APIs on this URL)
Subscription service
IdentityServer: https://account.nshiftportal.com
SubscriptionServer: https://api.nshiftportal.com
To verify access, go to: https://api.nshiftportal.com/track/healthcheck/info
Press F12 to bring up the console. Click the Network tab and see that you get a Status 200.
Example from Google Chrome:
Example from Firefox: