Ports used by Symantec DLP
Article ID: 160297
Updated On:
Products
Data Loss Prevention Endpoint Prevent
Data Loss Prevention
Data Loss Prevention Enforce
Data Loss Prevention Discover Suite
Data Loss Prevention Endpoint Discover
Data Loss Prevention Endpoint Suite
Data Loss Prevention Enterprise Suite
Data Loss Prevention Sensitive Image Recognition
Issue/Introduction
The following table is a list of standard network ports that are used in Symantec DLP. Some of them can be changed to custom ports if required, however we recommend leaving them at their defaults whenever possible. Some of these details are in the DLP Guides as well.
Resolution
| Purpose | Protocol | Default Port | Bi-Directional / Uni-Directional | Notes |
| Enforce Server Console (Windows) | TCP | 443 | Uni-Directional | How to change the Enforce console port in DLP |
| Enforce Server Console (Linux) | TCP | 8443 | Uni-Directional | How to change the Enforce console port in DLP |
| Enforce to Oracle Database | TCP | 1521 | Uni-Directional | |
| Enforce to Detection Servers | TCP | 8100 | Uni-Directional | How to change the MonitorController port |
| Endpoint Agents to Endpoint Servers | TCP | 10443 | Uni-Directional | What Port is used by the Endpoint Agent to communicate with the Endpoint Server? |
| Network Discover Crawlers and Scanners | See notes | What ports are used by Discover? | ||
| Network Prevent for Email: MTAResubmitPort | TCP | 10026 | Uni-Directional | Is a SMTP Email Client installed with Network Prevent for SMTP? |
| Network Prevent for Email: ServerSocketPort | TCP | 10025 | Uni-Directional | Is a SMTP Email Client installed with Network Prevent for SMTP? |
| Network Prevent for Web | TCP | 1344 | Uni-Directional | How to test ICAP connectivity to DLP Web Prevent |
| Kerberos port for Enforce AD Authentication | UDP | 88 | Configure Active Directory Authentication for DLP | |
| SMTP server for system alerts and response rule email notifications | TCP | 25 | Uni-Directional | |
| Syslog server integration; Events, Response Rules | TCP | 514 | Uni-Directional | Generating Syslog messages from Data Loss Prevention |
| Directory Connection for LDAP (Unsecure) | TCP | 389 | Uni-Directional | |
| Directory Connection for LDAP (Secure) | TCP | 636 | Uni-Directional | Does Live LDAP Lookup support Secure LDAP / LDAPS Symantec Data Loss Prevention |
| Enforce to Data Insight Server | TCP | 443 | ||
| OCR Server Port | TCP | 8555 | Uni-Directional | |
| Network Discover Grid Leader Port (16.1) | TCP | 39990 | Bi-Directional | |
| Network Discover Grid Leader Port (16.0) | TCP | 61616 | ||
| Enforce to DLP appliance (Management Port) | TCP | 8080 | Symantec Data Loss Prevention uses port 8080 to manage virtual and hardware appliances | |
| Enforce and Domain Controller Agent | TCP | 443 | Uni-Directional | |
| Discover Cluster Discovery ignite | TCP | 47500-47520 | ||
| Discover Cluster client range | TCP | 10800-10820 | ||
| Outlook on-send Addin | TCP | 4631, 4641, 4651 | Uni-Directional | Best Practices for Deploying the Web Add-in for Outlook for Windows and macOS Endpoints |
Feedback
Yes
No
Powered by
