Infrastructure network ports

book

Article ID: 179579

calendar_today

Updated On:

Products

Control Compliance Suite Windows

Issue/Introduction

 

Resolution

Infrastructure network ports

The Control Compliance Suite components use your existing TCP/IP network to communicate with each other. Based on your network configuration and on the location of your components, the communications may need to pass through a firewall. When the communications need to pass through a firewall, you must configure the firewall ports to allow components to access each other. You can configure the ports that each component uses if you choose.

Firewalls are often located between the Control Compliance Suite and the Application Server. In addition, firewalls are found between the Application Server and the Data Processing Service (DPS) Load Balancers or Collectors. The Application Server and the Control Compliance Suite Directory should be located with no firewalls in between.

The default ports that the Control Compliance Suite components use are as follows:

Application Server

1431

Directory Server

3890 (LDAP)

6360 (SSL)

445

12467

12468

Data Processing Service

3993

Production database or reporting database

1433

Management Service

12468

Response Assessment module

1977

Web Portal

80


In addition, the following ports must be open:

  • 53 (DNS)

  • 135

  • 137

  • 139

  • 145

  • 445

The following ports must be open to allow the DPS Collector to connect to a Symantec RMS data collector:

  • 3027

  • 135

  • 137

  • 139

Port 5600 must be open to allow the DPS Collector to connect to a Symantec ESM data collector.

Note:
You must use a port in the range from 1024 to 65535 for the Directory Server.