Symantec Data Loss Prevention uses port 8080 to manage virtual and hardware appliances

book

Article ID: 171956

calendar_today

Updated On:

Products

Data Loss Prevention Enforce Data Loss Prevention API Detection for Developer Apps Virtual Appliance Data Loss Prevention Network Prevent for Web Virtual Appliance Data Loss Prevention Network Prevent for Email Virtual Appliance DLP-S500

Issue/Introduction

Beginning in Symantec Data Loss Prevention 15.0, the Monitor Controller service (Detection Server Controller service in version 15.1 and later) includes an embedded version of Apache Tomcat that uses port 8080 in listening mode, enabling communication between Enforce Server processes related to DLP appliance management. The Tomcat process is bound to the Enforce Server localhost. If any other application binds to this port, then the service will fail to start.

You can confirm this connection in the following logs in the VontuMonitorController.log (15.0) or SymantecDLPDetectionServerController.log (15.1 and later) file:

INFO: Tomcat initialized with port(s): 8080 (http)
Mar 13, 2018 2:53:58 PM org.apache.catalina.core.StandardService startInternal
INFO: Starting service Tomcat
Mar 13, 2018 2:53:58 PM org.apache.catalina.core.StandardEngine startInternal
INFO: Starting Servlet Engine: Apache Tomcat/8.0.48

If port 8080 is unavailable for the Monitor Controller/Detection Server Controller, the following error is logged to VontuMonitorController.log (15.0) or SymantecDLPDetectionServerController.log (15.1 and later) file during startup:

Embedded servlet container failed to start. Port 8080 was already in use.

INFO: Initializing ProtocolHandler ["http-nio-127.0.0.1-8080"] 2018/05/17 14:12:23 org.apache.coyote.AbstractProtocol start

INFO: Starting ProtocolHandler ["http-nio-127.0.0.1-8080"] 2018/05/17 14:12:23 org.apache.coyote.AbstractProtocol start

SEVERE: Failed to start end point associated with ProtocolHandler ["http-nio-127.0.0.1-8080"] java.net.BindException: Address already in use: bind

Resolution

Ensure that port 8080 is dedicated to the Monitor Controller or Detection Server Controller service.