Legacy Update, and the Windows Update protocol, work entirely over HTTP and HTTPS. If you are behind a firewall, you may need to allow access to the following domains and ports to use Legacy Update.
If you are receiving network errors while using Legacy Update, you can click Test to confirm that you receive a valid web page. We recommend using Internet Explorer for this, as it uses the same WinINet and SChannel components as Windows Update and Legacy Update. Other browsers use their own networking and SSL/TLS components that may behave differently.
Some internet service providers (ISPs) are known to cause connection issues that break Legacy Update. If you receive an error message from your ISP when testing connectivity, contact them for more information.
Additionally, review the time and date set on your device to ensure they are accurate. It is common for old computers to have a fully drained real-time clock (RTC) battery, causing the clock to reset when the computer loses power. This causes SSL/TLS connection handshakes to fail, as the clock does not match the server you are connecting to.
| Domain | Port | Purpose | Test |
|---|---|---|---|
| legacyupdate.net | 80 (http) |
Main website Update installer web app Windows Update proxy service |
Test |
| 443 (https) | Test | ||
| content.legacyupdate.net | 80 (http) | Legacy Update and other general downloads | Test |
| 443 (https) | Test | ||
| content2.legacyupdate.net | 80 (http) | Windows Update downloads | Test |
| download.windowsupdate.com | Test | ||
| www.download.windowsupdate.com | Test |
Please note that it is expected for HTTPS traffic to not be accessible on Windows 2000 and XP.