PORT TYPE SERVICE DEFINITION
3212 UMIQ srv-DRIP-protocol
3502 DSView™ Software Appliance Communications srv-DS-View-plug-in
3871 DSView™ Communication (ADSAP2) srv-Security-protocol
4112 DSView™ Data Logging - Syslog srv-Data-logging-DSView
4440
Trellis
™ Management Protocol srv-UMG-Service-2
6443
Trellis
™ Platform OHS Service srv-Trellis-Platform-OHS
7001-7040 Serial srv-UMG-Service-9
8011
Trellis
™ Platform srv-UMG-Service-3
8012
Trellis
™ Platform srv-UMG-Service-4
8080 Java Viewer Download srv-UMG-Service-6
8123 Web UI Data - XML srv-UMG-Service-7
9002-9003
Trellis
™ Intelligence Engine Event Service srv-Trellis-Event (-2)
4206 HTML5 Video Viewer srv-KVM-websock-session
47777-48117
Trellis
™ Platform NA
50000-59999 SP Access NA
3.5.1 Port requirements
• Port 443 must be open to the appliance to support administration of the appliance using its web UI.
NOTE: For appliances running firmware versions prior to 3.3.0.27, ports 843 and 8213 must also be open.
• Ports 2068 and 8080 must be open to support KVMsessions to a UMIQ module.
• Port 22 must be open to support serial sessions and SSH-CLI appliance administration.
• Ports 3211, 3502, 3871 must be open to support DSView™ software management of the appliance.
• Ports 502, 6443, 8011, 8012, 9002 and 47777-48117 must be open for full Trellis™ Real-Time Infrastructure
Optimization Platform support.
ORDER SERVICE ACTION USE-CASE RECOMMENDATION
1 any Accept Needed for internal appliance communication. Do not disable.
2 any Accept Needed for internal appliance communication. Do not disable.
3 srv-WEB-UI Accept Needed to access the appliance web UI, set to DROP to disable web UI.
4 srv-PING Accept Needed to test/troubleshoot network connectivity, set to DROP if not used.
5 srv-FTP-Data Accept Needed to upgrade appliance firmware via the web UI, set to DROP otherwise.
6 srv-FTP-Commands Accept Needed to upgrade appliance firmware via the web UI, set to DROP otherwise.
7
srv-SSH-Serial-
Session
Accept Needed to launch serial session or to manage the appliance via SSH.
8 srv-Telnet-Session Accept Option to manage the appliance via Telnet, set to DROP if not using Telnet.
9 srv-DHCPD DROP Don't change this default unless using DHCP Relay feature.
10 srv-DHCPD DROP Don't change this default unless using DHCP Relay feature.
11 srv-TFTP-Services Accept Not needed for current appliance features, set to DROP.
12 srv-SNMP Accept Only needed if centrally monitoring the appliance using a central SNMP server.
13 srv-External-syslog Accept Only needed if centrally logging the appliance using a central Syslog server.
Table 3.4 Default Firewall Rules
Vertiv | Avocent® Universal Management Gateway Appliance Installer/User Guide | 17
To Next Page
Loading...
Need help?
General
