8CHAPTER 1: VCX SYSTEM SECURITY
TCP Port Access | Use the information in this section to configure your internal firewall. The | |||
| VCX system allows remote network access to these TCP ports: | |||
|
|
|
|
|
| Port Number | Port Type | Service Requiring the Port | |
|
|
|
|
|
| 22 | TCP | SSH | |
|
|
|
|
|
| 53 | UDP | DNS | |
|
|
|
|
|
| 80 | TCP | HTTP | |
|
|
|
|
|
| 123 | UDP | NTP | |
|
|
|
|
|
| 161 | UDP | SNMP | |
|
|
|
|
|
| 443 | TCP | HTTPS | |
|
|
|
|
|
| 2093 | UDP | SIP downloader | |
|
|
|
|
|
| 5060 | UDP | SIP | |
|
|
|
|
|
| 5065 | UDP | SIP | |
| Note: Port 5065 is used only on a branch office server that: |
■Uses only the eth0 network interface
■Runs the IP Telephony and Messaging software configuration
Back End Server Ports The Back End Servers (Accounting Server, Authentication and Directory Server) use these ports in order to provide redundant service to remote clients. Normally, these ports can be blocked by the internal firewall.
However, if the redundant servers are separated on either side of the internal firewall, the firewall must be configured to not block these ports.
Port Value | Service Requiring the Port |
|
|
1521 | Oracle Listener Service |
|
|
1645 | 3Com Authentication Server (RADIUS) |
|
|
1646 | 3Com Accounting Server (RADIUS) |
|
|
1781 | 3Com Accounting Server (3Q) |
|
|
1783 | 3Com Directory Server (3Q) |
|
|
1784 | 3Com Authentication Server (3Q) |
|
|
1786 | 3Com Accounting Server (3Q) |
|
|
1788 | 3Com Directory Server (3Q) |
|
|
1789 | 3Com Authentication Server (3Q) |
|
|
38000 | Global Directory Server (used between multiple regions |
| and between regions and branches) |
|
|