Infrastructure network ports

The Control Compliance Suite components use your existing TCP/IP network to communicate with each other. Based on your network configuration and on the location of your components, the communications may need to pass through a firewall. When the communications need to pass through a firewall, you must configure the firewall ports to allow components to access each other. You can configure the ports that each component uses if you choose.

Firewalls are often located between the Control Compliance Suite and the Application Server. In addition, firewalls are found between the Application Server and the Data Processing Service (DPS) Load Balancers or Collectors. The Application Server and the Control Compliance Suite Directory should be located with no firewalls in between.

The default ports that the Control Compliance Suite components use are as follows:

In addition, the following ports must be open:

• 53 (DNS)

• 135

• 137

• 139

• 145

• 445

The following ports must be open to allow the DPS Collector to connect to a Symantec RMS data collector:

• 3027

• 135

• 137

• 139

Port 5600 must be open to allow the DPS Collector to connect to a Symantec ESM data collector.

Note:
You must use a port in the range from 1024 to 65535 for the Directory Server.