The following table described the standard, default ports that are used by StorageGuard for the following purposes:
- Web UI Access and Rest API
- Communication between StorageGuard components
- Communication with scanned Storage and Backup systems
- Communication with external services
The table can be used to prepare for a StorageGuard deployment and make firewall configuration if and when appropriate. Keep in mind that firewall changes often can be avoided by placing StorageGuard in the IT management network segments.
Network Port Requirements - StorageGuard
Source | Destination | Protocol | Default Port* | Note |
Master/Collector server | Brocade FC Switch | SSH | 22 | |
Master/Collector server | Brocade SanNav | HTTP/HTTPS | 443 | |
Master/Collector server | Cisco FC Switch | SSH | 22 | |
Master/Collector server | Cisco DCNM-SAN |
HTTP/HTTPS
|
443 | AKA Cisco Nexus Dashboard Fabric Controller |
Master/Collector server | Cohesity DataPlatform |
SSH HTTP/HTTPS |
22 443 |
|
Master/Collector server | Commvault CommServe | HTTP/HTTPS | 443 | |
Master/Collector server | Dell Avamar server | SSH | 22 | Avamar server or MCCLI server |
Master/Collector server | Dell ECS |
HTTP/HTTPS SSH |
443 22 |
|
Master/Collector server | Dell PowerFlex Manager |
SSH HTTP/HTTPS |
22 443 |
|
Master/Collector server | Dell PMAX/VMAX Solutions Enabler host (Linux/Unix) | SSH | 22 | Provide a SYMCLI Server, or client if eMGMT is used |
Master/Collector server | Dell PMAX/VMAX Solutions Enabler host (Windows) |
WinRM + CIFS or WMI |
80, 5985, 445
WMI ports - All TCP, UDP ports 135, 137, 138, 139 |
|
Master/Collector server | Dell PMAX/VMAX – Unisphere | HTTPS | 8443 | |
Master/Collector server | Dell PowerScale / Isilon | SSH | 22 | |
Master/Collector server | Dell RecoverPoint | SSH | 22 |
RecovertPoint Appliance or RecovertPoint VM |
Master/Collector server | Dell Unity Unisphere | HTTP/HTTPS | 443 | |
Master/Collector server | Dell VNX NaviSECCLI host | SSH | 22 | Host installed with NaviSECCLI |
Master/Collector server | Dell VPLEX |
SSH HTTP/HTTPS |
22 443 |
|
Master/Collector server | Dell VxRail | HTTP/HTTPS | 443 | |
Master/Collector server | Dell XtremIO | HTTP/HTTPS | 443 | |
Master/Collector server | Dell Cyber Recovery |
HTTP/HTTPS SSH |
14778 22 |
|
Master/Collector server | Dell PowerProtect Data Manager (PPDM) | HTTP/HTTPS | 8443 | |
Master/Collector server | Dell PowerProtect DD / Data Domain / DDMC / DDVE | SSH | 22 | |
Master/Collector server | Hitachi Content Platform (HCP) | HTTP/HTTPS | 9090 | |
Master/Collector server | Hitachi VSP Ops Center | HTTP/HTTPS | 23451, 443 | |
Master/Collector server | Hitachi VSP Ops Center host (Linux) | SSH | 22 | |
Master/Collector server | Hitachi VSP Ops Center host (Windows) |
WinRM + CIFS or WMI |
80, 5985, 445
WMI ports - All TCP, UDP ports 135, 137, 138, 139 |
|
Master/Collector server | Hitachi CCI host (Linux/Unix) | SSH | 22 | Optional, recommended |
Master/Collector server | Hitachi CCI host (Windows) |
WinRM + CIFS or WMI |
80, 5985, 445
WMI ports - All TCP, UDP ports 135, 137, 138, 139 |
Optional, recommended |
Master/Collector server | HPE OneView | HTTP/HTTPS | 443 | |
Master/Collector server | HPE StoreOnce |
SSH HTTP/HTTPS |
22 443 |
|
Master/Collector server | HPE 3PAR / Primera |
SSH HTTP/HTTPS |
22 443 |
443 for future use |
Master/Collector server | IBM DS (DSCLI) | SSH | 22 | |
Master/Collector server | IBM Storage Protect hub server | SSH | 22 | administrative command-line client |
Master/Collector server | IBM SVC, Storwize and FlashSystem | SSH | 22 | |
Master/Collector server | Infinidat InfiniBox | HTTP/HTTPS | 443 | |
Master/Collector server | NetApp Data ONTAP Cluster |
HTTP/HTTPS SSH |
80 or 443 22 |
|
Master/Collector server | NetApp Active IQ Unified Manager |
HTTP/HTTPS
|
443 | |
Master/Collector server | NetApp StorageGRID |
HTTP/HTTPS
|
443 | |
Master/Collector server | Pure Storage FlashArray |
HTTPS SSH |
443 22 |
|
Master/Collector server | Pure Storage FlashBlade |
HTTPS SSH |
443 22 |
|
Master/Collector server | Rubrik CDM | HTTP/HTTPS | 443 | |
Master/Collector server | Veritas NetBackup Master | HTTPS | 443, 1556 | |
Master/Collector server | Veritas NetBackup FLEX appliance |
HTTPS SSH |
443 22 |
For future use |
Master/Collector server | VMware VSAN – vCenter | HTTP/HTTPS | 443 | |
Master/Collector server | Management host
|
SSH (Linux / Unix) --- Windows: WinRM + CIFS or WMI |
22 --- 80, 5985, 445
WMI - All TCP, UDP ports 135, 137, 138, 139 |
Optional, recommended |
End user workstations | SG Master server | HTTPS | 8443 | configurable |
SG Master server | Database server | JDBC |
1521 (oracle) or 5432 (postgres)
|
Relevant only when external DB server is used |
SG Master server | SG Collector server | TCP | 27000 (configurable) | Relevant only when an SG collector server is used |
SG Master server | LDAP / AD server |
LDAP |
389, 636 |
|
SG Master server | Email server | SMTP |
25, 587 |
|
SG Master server | ServiceNow | HTTPS | 443 | Relevant only when SNOW is used |
* TCP unless mentioned otherwise
Comments
0 comments
Please sign in to leave a comment.