Clean Interface Inbound
NoteActionPortProtocolDestinationSource
Allow SSH conectivity to the
tgsh-dialog.
Allow22TCPClean InterfaceUser Subnet
Appliance API and Threat
Grid user interface. This will
redirect to HTTPS TCP/443.
Allow80TCPClean InterfaceUser Subnet
Appliance API and Threat
Grid user interface.
Allow443TCPClean InterfaceUser Subnet
Allow connectivity to the
Threat Grid UI Glovebox.
Allow9443TCPClean InterfaceUser Subnet
Admin Interface Outbound (Optional)
The following depends on what services are configured.
NoteActionPortProtocolDestinationSource
Optional, only required if
Threat Grid appliance is
configured to send backups to
an NFSv4 share.
Allow2049TCPNFSv4 ServerAdmin
Interface
Admin Interface Inbound
NoteActionPortProtocolDestinationSource
Allow SSH connectivity to the
TGSH Dialog.
Allow22TCPAdmin InterfaceAdmin
Subnet
Allow Access to the OpAdmin
Portal interface. This will
redirect to HTTPS TCP/443.
Allow80TCPAdmin InterfaceAdmin
Subnet
Allow Access to the OpAdmin
Portal interface.
Allow443TCPAdmin InterfaceAdmin
Subnet
Dirty Interface for Non Cisco-Validated/Recommended Deployment
NoteActionPortProtocolDestinationSource
Update, support snapshot, and
licensing services.
Allow22TCPInternetDirty
Interface
Allow outbound DNS.Allow53TCP/UDPInternetDirty
Interface
Allow outbound NTP.Allow123UDPInternetDirty
Interface
Server Setup
7
Server Setup
Firewall Rules
To Next Page
Loading...
Need help?
General
