I've probably overlooked this in the documentation, but what ports need to
be open on the internet side ?

The kind of info you see when you open up 443 in a browser is somewhat of a
security risk as you see users with their full ldap context so i'm guessing
there is another port ?