Looking for list of all open ports needed for provision

I’m having a hell of a time provision an EC2 instance behind a firewall, and the IT provider facilitating things for me is asking for a full list of ports they’ll need to open or whitelist for us to provision the server. We were running into issues particularly around the key retrieval and installation for the ppas.

Would anyone happen to know a full list of ports that will need to be open to run an entire (stock) provision with trellis?

Thanks for any help of thoughts.