HP Cisco Catalyst Blade Switch 3020 HP Smart Update Manager 5.2 Release Notes - Page 8

Network ports used by HP SUM, Linux servers or HP SUM cannot deploy updates. By default

Get HP Cisco Catalyst Blade Switch 3020 PDF manuals and user guides View all HP Cisco Catalyst Blade Switch 3020 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 8 highlights

• For Linux deployments, a root equivalent user account must be used. • SSH support must be enabled and the firewall opened to allow SSH communications on remote Linux servers or HP SUM cannot deploy updates. By default, SUSE LINUX Enterprise Server 10 and 11 block SSH support through the firewall. To enable SSH support if it has been disabled in the firewall, use the yast2 command to open the necessary ports in the Linux firewall. IMPORTANT: HP SUM has limited cross-platform deployment support. Deployments from Windows to Linux are supported, but deployments from Linux to Windows are not supported. Network ports used by HP SUM HP SUM requires that certain network ports are available for proper operation. If you lock down network ports, remember to ensure that the ports listed in the network port tables are open so that HP SUM works correctly when connecting to remote target servers and hosts. If you are unable to unlock these network ports, the only option is to run HP SUM locally and update network-based hosts, such as the OA, iLO, and VC modules, through their web interfaces. The SOAP server that HP SUM launches uses ports 443 or 63006. You can define your own ports by modifying the hpsum.ini file. 1. Open hpsum.ini in a text editor. You can find the file in the same folder as the HP SUM application. 2. Look for the following lines: Port=443 AlternatePort=63006 3. Change the AlternatePort to a port free of another web service. NOTE: For security reasons, HP does not recommend changing the main port from port 443. Table 1 HP SUM Windows network ports Ports Port 443 Ports 445 and 137/138/139 (Port 137 is used only if you are using NetBIOS naming service.) Port 62286 Ports 80 or 63000-63005 Description A secure data port used to transfer information. Connects to the remote ADMIN$ share on target servers. These are the standard ports Windows servers use to connect to the remote file shares. If you can connect remotely to a remote Windows file share on the target server, then you have the right ports open. Default for some internal communications. This port listens on the remote side if there is no conflict. If a conflict occurs, the next available port is used. Logs are passed to the target and retrieved through an internal secure web server that uses port 80 if it is available. If it is not available, the Web server uses first available port in the range of 60000-63005. This support allows updates of the iLO and VC firmware without the need to access the host server. It also allows the servers to run VMware or other virtualization platforms to update the iLO firmware without requiring a server reboot or a migration of the virtual machines to other servers. NOTE: HP SUM attempts to determine if a server running HP SUM also hosts a web server. In some cases, HP SUM cannot detect an existing web server and attempts to use port 80. If this occurs, installations that are using HP SUM will fail. If failure occurs, you can move HP SUM to another server or workstation that is not already running a web server. You can also disable the web server until HP SUM installations are complete. Ports 21 or 63006-63010 You can use these FTP ports to perform switch updates. 8 Prerequisites

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
For Linux deployments, a root equivalent user account must be used.
SSH support must be enabled and the firewall opened to allow SSH communications on remote
Linux servers or HP SUM cannot deploy updates. By default, SUSE LINUX Enterprise Server 10
and 11 block SSH support through the firewall. To enable SSH support if it has been disabled in
the firewall, use the
yast2
command to open the necessary ports in the Linux firewall.
IMPORTANT:
HP SUM has limited cross-platform deployment support. Deployments from Windows
to Linux are supported, but deployments from Linux to Windows are not supported.
Network ports used by HP SUM
HP SUM requires that certain network ports are available for proper operation. If you lock down
network ports, remember to ensure that the ports listed in the network port tables are open so that HP
SUM works correctly when connecting to remote target servers and hosts. If you are unable to unlock
these network ports, the only option is to run HP SUM locally and update network-based hosts, such
as the OA, iLO, and VC modules, through their web interfaces.
The SOAP server that HP SUM launches uses ports 443 or 63006. You can define your own ports by
modifying the
hpsum.ini
file.
1.
Open
hpsum.ini
in a text editor. You can find the file in the same folder as the HP SUM
application.
2.
Look for the following lines:
Port=443
AlternatePort=63006
3.
Change the
AlternatePort
to a port free of another web service.
NOTE:
For security reasons, HP does not recommend changing the main port from port 443.
Table 1 HP SUM Windows network ports
Description
Ports
A secure data port used to transfer information.
Port 443
Connects to the remote ADMIN$ share on target servers. These are the standard
ports Windows servers use to connect to the remote file shares. If you can connect
Ports 445 and 137/138/139 (Port 137
is used only if you are using NetBIOS
naming service.)
remotely to a remote Windows file share on the target server, then you have the
right ports open.
Default for some internal communications. This port listens on the remote side if
there is no conflict. If a conflict occurs, the next available port is used.
Port 62286
Logs are passed to the target and retrieved through an internal secure web server
that uses port 80 if it is available. If it is not available, the Web server uses first
Ports 80 or 63000–63005
available port in the range of 60000-63005. This support allows updates of the
iLO and VC firmware without the need to access the host server. It also allows
the servers to run VMware or other virtualization platforms to update the iLO
firmware without requiring a server reboot or a migration of the virtual machines
to other servers.
NOTE:
HP SUM attempts to determine if a server running HP SUM also hosts
a web server. In some cases, HP SUM cannot detect an existing web server and
attempts to use port 80. If this occurs, installations that are using HP SUM will
fail. If failure occurs, you can move HP SUM to another server or workstation
that is not already running a web server. You can also disable the web server
until HP SUM installations are complete.
You can use these FTP ports to perform switch updates.
Ports 21 or 63006–63010
8
Prerequisites