Table of Contents |
---|
For Open-AudIT to function, certain network ports must be enabled for communication.
...
The following table shows the traffic required for using Open-AudIT and the related features that use each port.
Port # | Protocol | Service Name | Connection Initiation | Application | Notes |
---|---|---|---|---|---|
N/A | ICMP | ping | Server to Device | Open-AudIT | Discovery - ICMP Message Types 8 and 0 |
22 | TCP | SSH | Server to Device | Open-AudIT | Discovery |
23 | TCP | Telnet | Server to Device | Open-AudIT | Discovery |
25 or 587 | TCP | SMTP | Server to Email Server | Open-AudIT | Scheduled Reports |
53 | UDP | DNS | Server to DNS Server | Open-AudIT | Discovery |
53 | TCP | DNS | Server to DNS Server | Open-AudIT | Discovery |
80 | TCP | HTTP | Device to Server | Open-AudIT | Upload of audit result |
80 | TCP | HTTP | Server to Device | Open-AudIT | Discovery |
135 | TCP | WMI | Server to Device | Open-AudIT | Discovery |
139 | TCP | File and Print Sharing | Server to Device | Open-AudIT | Discovery |
161 | UDP | SNMP | Server to Device | Open-AudIT | Discovery |
443 | TCP | HTTPS | Server to Device | Open-AudIT | Discovery |
443 | TCP | HTTPS | Device to Server | Open-AudIT | Upload of audit result |
445 | TCP | File and Print Sharing | Server to Device | Open-AudIT | Discovery |
445 | TCP | Active Directory | Server to AD Controller | Open-AudIT | Authentication and Discovery |
49152-65535 | TCP | WMI / AD | Server to Device | Open-AudIT | Discovery - MS Server 2008 and above, MS Vista and above targets |
1025-5000 | TCP | WMI / AD | Server to Device | Open-AudIT | Discovery - MS 2000, XP, 2003 targets |
NOTE – See below for more details on Windows network port range requirements.
Network Management Traffic for Open-AudIT installed on a Linux based server.
The following table shows the traffic required for using Open-AudIT and the related features that use each port.
Port # | Protocol | Service Name | Connection Initiation | Application | Notes |
---|---|---|---|---|---|
N/A | ICMP | ping | Server to Device | Open-AudIT | Discovery - ICMP Message Types 8 and 0 |
22 | TCP | SSH | Server to Device | Open-AudIT | Discovery |
23 | TCP | Telnet | Server to Device | Open-AudIT | Discovery |
25 or 587 | TCP | SMTP | Server to Email Server | Open-AudIT | Scheduled Reports |
53 | UDP | DNS | Server to DNS Server | Open-AudIT | Discovery |
53 | TCP | DNS | Server to DNS Server | Open-AudIT | Discovery |
80 | TCP | HTTP | Device to Server | Open-AudIT | Upload of audit result |
80 | TCP | HTTP | Server to Device | Open-AudIT | Discovery |
135 | TCP | WMI | Server to Device | Open-AudIT | Discovery |
139 | TCP | Samba | Server to Device | Open-AudIT | Discovery |
161 | UDP | SNMP | Server to Device | Open-AudIT | Discovery |
443 | TCP | HTTPS | Server to Device | Open-AudIT | Discovery |
443 | TCP | HTTPS | Device to Server | Open-AudIT | Upload of audit result |
445 | TCP | Samba / RPC | Server to Device | Open-AudIT | Discovery |
445 | TCP | Active Directory | Server to AD Controller | Open-AudIT | Authentication and Discovery |
623 | UDP | IPMI | Server to Device | Open-AudIT | Discovery |
Network Management User Traffic for Open-AudIT
The following table shows the traffic required for a user to communicate with Open-AudIT or for Open-AudIT to communicate to the user.
Port # | Protocol | Service Name | Connection Initiation | App | Notes |
---|---|---|---|---|---|
80 | TCP | HTTP | User to Server | OA | Web Interface |
443 | TCP | HTTPS | User to Server | OA | Web Interface |
...
Optional LDAP / MS Active Directory traffic
If you use the optional LDAP Auth, you will likely need the below ports accessible from the Open-AudIT Server to the LDAP server.
OPenLDAP and Microsoft Active Directory require the same ports.
Port # | Protocol | Service Name | Connection Initiation | App | Notes |
---|---|---|---|---|---|
389 | TCP | LDAP | Server to LDAP Server | OA | User authentication and/or authorisation |
636 | TCP | LDAPS | Server to LDAP Server | OA | User authentication and/or authorisation |
Notes
Microsoft’s DCOM/WMI services typically use a large range of random ports to function.
...
A valuable reference for Remote WMI can be found on Microsoft’s website, along with several other linked documents. Connecting to WMI on a Remote Computer - http://msdn.microsoft.com/en-us/library/aa389290(v=vs.85).aspx