C Open Ports in GigaVUE-FM

This appendix provides information about the open ports in GigaVUE-FM and also in the devices.

The following table provides information about the default ports open in the firewall for GigaVUE-FM. The Open Default Ports table is sorted by Protocol and then Port Number.

Table C-1: Open Default Ports
Port No.	Protocol	Service	Traffic Direction	Description
80	HTTP	GigaVUE-FM GUI	Bidirectional traffic between Web Browser and GigaVUE-FM	Used for redirecting the traffic internally to port 443.
443	HTTPS	GigaVUE-FM GUI	Bidirectional traffic between Web Browser and GigaVUE-FM Bidirectional traffic between GigaVUE-FM and GigaVUE-VM	Used for normal GigaVUE-FM user interaction.
389	LDAP	AAA	Bidirectional traffic between LDAP server and GigaVUE-FM	Used for accessing and maintaining distributed directory information services over the Internet Protocol (IP) network.
636	LDAP	AAA	Bidirectional traffic between LDAP server and GigaVUE-FM	Used for secure LDAP protocol over SSL for accessing and maintaining distributed directory information services over the Internet Protocol (IP) network.
1812/1813 1645/1646	Radius	AAA	Bidirectional traffic between Radius server and GigaVUE-FM	Used for running the client/server protocol in the application layer. They can use either TCP or UDP as the transport protocol.
49	TACACS	AAA	Bidirectional traffic between TACACS server and GigaVUE-FM	Used for communicating with the authentication server in order to determine if you have access to the network.
22	TCP	SSH	Bidirectional traffic between Putty and GigaVUE-FM	Used for GigaVUE-FM admin user login. Also, used for initial GigaVUE-FM IP configuration. Used by the web browser to communicate with GigaVUE-VM for troubleshooting purposes.
514	TCP	Logstash	Unidirectional traffic from physical nodes to GigaVUE-FM	Used for sending device log messages via SSL from devices to GigaVUE-FM.
5672	TCP	RabbitMq	Unidirectional traffic from physical nodes to GigaVUE-FM	Used for sending event notifications via SSL from devices to GigaVUE-FM.
5671	TCP/SSL	RabbitMq	Unidirectional traffic from physical nodes to GigaVUE-FM	Used for sending event notifications via SSL from devices to GigaVUE-FM.
53	UDP	DNS	Bidirectional traffic between a DNS server and GigaVUE-FM	Used to resolve Fully Qualified Domain Names (FQDNs).
68	UDP	DHCP	Bidirectional traffic between GigaVUE-FM and DHCP server	Used only if DHCP is enabled on the GigaVUE-FM appliance.
123	UDP	NTP	Bidirectional traffic between a Network Time Protocol (NTP) server and GigaVUE-FM	Used only if GigaVUE-FM is configured to use NTP.
162	UDP	SNMP	Unidirectional traffic from managed appliances to GigaVUE-FM	Used to process incoming traps sent from managed appliances to GigaVUE-FM.
2055	UDP	NetFlow	Unidirectional traffic from managed Appliances to GigaVUE-FM	Used for receiving NetFlow traffic.

Note: For migration and provisioning purposes, Port 902 must be open between the VMware vCenter server and the VMware ESXi hosts. Otherwise, GigaVUE-FM bulk deployment fails.

Port Number	Protocol	Service	Traffic Direction	Description
902	TCP/UDP	ESXi Host	Bidirectional traffic between VMware vCenter and ESXi hosts	Used for sending data from vCenter Server to the ESXi host. The ESXi host uses this port to send regular heartbeat to the vCenter Server system. Note: Ports 902 and 443 should be open between GigaVUE-FM and an ESXi host to facilitate deployment of GigaVUE-VMs.

Port Number

Protocol

Service

Traffic Direction

Description

902

TCP/UDP

ESXi Host

Bidirectional traffic between VMware vCenter and ESXi hosts

Used for sending data from vCenter Server to the ESXi host. The ESXi host uses this port to send regular heartbeat to the vCenter Server system.

Note: Ports 902 and 443 should be open between GigaVUE-FM and an ESXi host to facilitate deployment of GigaVUE-VMs.

The following table lists the open ports in GigaVUE-H series devices. GigaVUE-FM manages the devices using these open ports.

Table C-2: Open Ports in GigaVUE-H series Devices
Port Number	Protocol	Service	Traffic Direction	Description
22	SSH	Device Management	Bidirectional traffic between GigaVUE-FM and	Used for image download, configuration backup/restore operations
80	HTTP	Communication	Bidirectional traffic between GigaVUE-FM and	Used for initial communication setup. Assumption is that HTTP redirect will be turned ON in all GigaVUE devices and FM will use HTTP(S) henceforth
443	HTTPS	Communication	Bidirectional traffic between GigaVUE-FM and	GigaVUE-FM to device communication. Note: Ports 902 and 443 should be open between GigaVUE-FM and an ESXi host to facilitate deployment of GigaVUE-VMs.

The following table lists the open ports in GigaVUE-G series devices. GigaVUE-FM manages the devices using these open ports.

Table C-3: Open Ports in GigaVUE-G Series Devices
Port Number	Protocol	Service	Traffic Direction	Description
22	SSH	Device Management	Bidirectional traffic between GigaVUE-FM and	Configuration backup/restore operations
80	HTTP	Communication	Bidirectional traffic between GigaVUE-FM and	Used for initial communication setup. Assumption is that HTTP redirect will be turned ON in all GigaVUE devices and FM will use HTTP(S) henceforth
443	HTTPS	Communication	Bidirectional traffic between GigaVUE-FM and	GigaVUE-FM to device communication