Firewall port requirements for Message Broker can be found under the following link:
SAP Field Service Firewall Configuration Requirements
The firewall needs to allow The firewall placed between a message broker and FSM Cloud must allow unidirectional access via HTTPS to:
auth.coresuite.com
...
ds.coresuite.com
[de|eu|us|cn|au].coresuite.com
...
[de|eu|us|cn|au]. coresystems.net
All connections use port 443.
...
The firewall placed between a message broker and SAP system must allow bidirectional access.
TCP port used by message broker depends on its configuration
TCP port used by SAP depends on system settings - it must be either port used for HTTP connections or port used for HTTPS connection
Use of HTTPS is optional and both channels (to and from SAP) are independent in that matter - for instance, one may setup secure connection from SAP to message broker and regular HTTP in the opposite direction
...
➡️ More on the SAP Field Service firewall configuration requirements can be found under the following link.