Dell PowerStore 1000T EMC PowerStore Security Configuration Guide - Page 26

Communication security settings, Port Usage, Appliance network ports

Get Dell PowerStore 1000T PDF manuals and user guides View all Dell PowerStore 1000T manuals
Add to My Manuals
Save this manual to your list of manuals

Page 26 highlights

2 Communication security settings This section contains the following topics: Topics: • Port Usage Port Usage The following sections outline the collection of network ports and the corresponding services that may be found on the appliance. The appliance functions as a network client in several circumstances, for example, in communicating with a vCenter Server. In these instances, the appliance initiates communication and the network infrastructure will need to support these connections. NOTE: For additional information about ports, see Knowledge Base Article 542240, PowerStore: Customer Network Firewall Rules - TCP/UDP Ports. Go to https://www.dell.com/support/kbdoc/en-us/542240. The Customer Network Firewall Rules tool enables you to filter and review the list of firewall rules and ports that are relevant to your PowerStore deployment. Appliance network ports The following table outlines the collection of network ports and the corresponding services that may be found on the appliance. Table 2. Appliance network ports Port 22 Service SSH client, SupportAssist Connect Home Protocol TCP Access Direction Bi-directional Description • Allows SSH access (if enabled). • Required for SupportAssist Connect Home. If closed, management connections using SSH will be unavailable. 25 SMTP TCP Outbound Allows the appliance to send email. If closed, email notifications will be unavailable. 26 SSH client TCP Bi-directional SSH access to port 22 is redirected to this port. If closed, management connections using SSH will be unavailable. 53 DNS TCP/UDP Outbound Used to transmit DNS queries to the DNS server. If closed, DNS name resolution will not work. 80, 8080, 8128 SupportAssist TCP Outbound Used for SupportAssist Proxy connection. 123 NTP TCP/UDP Outbound NTP time synchronization. If closed, time will not be synchronized among appliances. 443 HTTPS TCP Bi-directional Secure HTTP traffic to PowerStore Manager. If closed, communication with the appliance will be unavailable. 500 IPsec (IKEv2) UDP Bi-directional To make IPSec work through your firewalls, open UDP port 500 and permit IP protocol numbers 50 and 51 on both inbound and outbound firewall filters. UDP Port 500 26 Communication security settings

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
Communication security settings
This section contains the following topics:
Topics:
Port Usage
Port Usage
The following sections outline the collection of network ports and the corresponding services that may be found on the appliance. The
appliance functions as a network client in several circumstances, for example, in communicating with a vCenter Server. In these instances,
the appliance initiates communication and the network infrastructure will need to support these connections.
NOTE:
For additional information about ports, see Knowledge Base Article 542240,
PowerStore: Customer Network
Firewall Rules - TCP/UDP Ports
. Go to
. The Customer Network
Firewall Rules tool enables you to filter and review the list of firewall rules and ports that are relevant to your
PowerStore deployment.
Appliance network ports
The following table outlines the collection of network ports and the corresponding services that may be found on the appliance.
Table 2. Appliance network ports
Port
Service
Protocol
Access Direction
Description
22
SSH client,
SupportAssist
Connect Home
TCP
Bi-directional
Allows SSH access (if enabled).
Required for SupportAssist Connect
Home.
If closed, management connections using
SSH will be unavailable.
25
SMTP
TCP
Outbound
Allows the appliance to send email. If closed,
email notifications will be unavailable.
26
SSH client
TCP
Bi-directional
SSH access to port 22 is redirected to this
port. If closed, management connections
using SSH will be unavailable.
53
DNS
TCP/UDP
Outbound
Used to transmit DNS queries to the DNS
server. If closed, DNS name resolution will
not work.
80, 8080, 8128
SupportAssist
TCP
Outbound
Used for SupportAssist Proxy connection.
123
NTP
TCP/UDP
Outbound
NTP time synchronization. If closed, time will
not be synchronized among appliances.
443
HTTPS
TCP
Bi-directional
Secure HTTP traffic to PowerStore
Manager. If closed, communication with the
appliance will be unavailable.
500
IPsec (IKEv2)
UDP
Bi-directional
To make IPSec work through your firewalls,
open UDP port 500 and permit IP protocol
numbers 50 and 51 on both inbound and
outbound firewall filters. UDP Port 500
2
26
Communication security settings