Version 5.2 Sourcefire 3D System Installation Guide 25
Introduction to the Sourcefire 3D System
Security, Internet Access, and Communication Ports
Chapter 1
By default, several other ports are open to allow the system to take advantage of
additional features and functionality. The following table lists these ports. Note
that DHCP is disabled by default on ports 67 and 68.
Sourcefire 3D System Open Communication Ports Requirements
PORTS DESCRIPTION PROTOCOL DIRECTION OPEN THE PORT TO...
22 SSH/SSL TCP Bidirectional allow a secure remote connection to the
appliance.
25 SMTP TCP Outbound send email notices and alerts from the
appliance.
53 DNS TCP Outbound use DNS.
67, 68 DHCP UDP Outbound use DHCP. Disabled by default.
80 HTTP TCP Outbound or
Bidirectional
allow the RSS Feed dashboard widget to
connect to a remote web server; use for
auto-update.
Adding inbound access allows the
Defense Center to update custom and
third-party Security Intelligence feeds via
HTTP, and to download URL filtering
information.
161, 162 SNMP UDP Bidirectional
(161);
Outbound
(162)
provide access if you enabled SNMP
polling (inbound) and SNMP traps
(outbound).
389, 636 LDAP TCP Outbound track user activity and for authentication.
443 HTTPS/AMPQ TCP Inbound or
Bidirectional
access the appliance. Required.
Adding outbound access allows the
Defense Center to download or receive
software updates, VDB and GeoDB
updates, URL filtering information,
secure Security Intelligence feeds, and
endpoint-based (FireAMP) malware
events.
514 syslog UDP Outbound send alerts to a remote syslog server.
623 SOL/LOM UDP Bidirectional allow you to perform Lights-Out
Management (LOM) using a Serial Over
LAN (SOL) connection on a Series 3
appliance.
To Next Page
Loading...