Communication & Port Requirements
Article ID: 286607
Updated On: 03-28-2025
Products
Carbon Black App Control (formerly Cb Protection)
Issue/Introduction
What ports and addresses are required for Agent and Server communication?
Environment
- App Control Server: All Supported Versions
- App Control Agent: All Supported Versions
Resolution
Between Server & Agents |
||
| URL & Port | Used For | Configurable? |
| Server Address via 41002 |
General communication between Agent & Server, examples:
|
|
| Resource Download Location via 443 |
|
File transfers can be changed using either: |
Between Server & External Services |
||
| URL & Port | Used For | Configurable? |
| services.bit9.com via 443 TLS 1.2 is currently required |
|
No |
| Optional: Outbound 514 access | Exporting Events via SYSLOG | Yes |
| Two Tier Environments: 1433 to SQL Server | SQL Server connections | Yes, during Server install |
Publisher Validation (CRL Checks) |
|
Additional Information
- The endpoints and application server must posses a matching Cipher Suite & Protocol.
- SSL Inspection is not supported for communication between the Agents and Server.
- The Agent does not officially support communication with the Server through a Proxy.
- HTTP Session Sharing (Ex: F5 OneConnect) is not supported.
- The source port opened by the Agent will be determined by the OS ephemeral port configuration and is not determined by the App Control Agent.
- Further detail about the ports, and communication requirements can be found on Tech Docs > Server > Server OER > Communication Requirements.
Feedback
Was this article helpful?
Yes
No
Powered by
