HP Integrity Superdome 2 8/16 HP Smart Update Manager 5.0 User Guide - Page 67

Troubleshooting 67

Enabling ports in HP Smart Update Manager

The ports that HP SUM uses cannot be configured. When HP SUM initiates communications to remote targets,

it uses several well-known ports, depending on the operating system. For Windows, ports 138 and 445 are

used to connect to remote targets (equivalent to remote and file print share functionality). For Linux, port 22

(SSH) is used to start the communications with the remote target.

HP SUM uses defined ports to communicate between the remote target and the workstation where HP SUM

is executing. When you run HP SUM, the administrator/root privileges are used to dynamically register the

port with the default Windows and Linux firewalls for the length of the application execution, then the port is

closed and deregistered. All communications are over a SOAP server using SSL with additional functionality

to prevent man-in-the-middle, packet spoofing, packet replay, and other attacks. The randomness of the port

helps prevent port scanning software from denying service to the application. The SOAP server is deployed

on the remote target using the initial ports described above (ports 138, 445, and 22) and then allocates

another independent port as documented below for its communications back to the workstation where HP

SUM is running. During shutdown of HP SUM, the SOAP server is shutdown and removed from the target

server, leaving the log files.

To deploy software to remote targets on their secure networks using HP SUM, the following ports are used.

Windows

Ports

Description

Ports 445 and 137/138/139

(Port 137 is used only if you are

using NetBIOS naming service.)

These ports are needed to connect to the remote ADMIN$ share on

target servers. These are the standard ports Windows servers use to

connect to remote file shares. If you can connect remotely to a remote

Windows file share on the target server, the proper ports are open.

Ports 60000-60007

Random ports are used in this range to pass messages back and forth

between the local and remote systems using SSL. These ports are used on

the system running HP SUM to send data to the target server.

Several internal processes within HP SUM automatically use port 60000

when it is available. If there is a port conflict, the manager uses the next

available port. There is no guarantee that the upper limit is 60007 as it

is dependent on how many target devices are selected for installation.

Ports 61000-61007

These ports are used from the target server back to the system running HP

SUM. The same mechanism is used by the remote access code as the

60000 ports, with the first trial port being 61000. There is no guarantee

that the upper limit is 61007 when a conflict occurs. For the case of

ipv4-only and one NIC, the lowest available port is used by HP SUM to

pass information between processes on the local workstation where HP

SUM is executed, and the next available port is used to receive messages

from remote servers.

Port 62286

This port is the default port for some internal communications. It is the

listening on the remote side if there is no conflict. If a conflict occurs, the

next available port is used.

Section	Page
HP Smart Update Manager User Guide	1
Abstract	1
Notice	2
Contents	3
Introduction	6
HP SUM overview	6
Using this guide	7
New features of HP SUM	7
Minimum requirements	7
Minimum requirements for Windows servers	7
Minimum requirements for Linux x86 servers	8
Minimum requirements for Red Hat Enterprise Linux 6 servers	9
Supported deliverables overview	10
Support and limitations of HP SUM	10
Deployment from HP SUM	11
Executing HP SUM	11
Deploying firmware for ProLiant servers using the HP Smart Update Firmware DVD	13
HP SUM supported firmware for HP ProLiant servers	14
Deploying Integrity firmware bundles with HP SUM	15
HP SUM supported firmware for HP Integrity servers	15
HP SUM User Interface	16
Deployment scenarios	16
Keyboard support	16
Source selections	17
Set Proxy Server options	18
Using multiple repositories	19
Add Repository	19
Edit Repository	20
Remove Repository	20
Configure Components	20
Download components for target discovery	21
Select targets	22
Inter-target dependency	23
Dependency checking	23
Target types	24
Find and discover targets	24
Add Single Target	24
Enter Target Credentials	24
Edit Target	25
Remove Target	25
Manage Groups	25
Install updates	25
Installing updates	26
Abort installation	27
View failed dependencies	27
Select bundles	27
Select components	28
View firmware mismatch details	28
Select devices	28
Installation options	29
Reboot options	29
Schedule Updates	29
Generate and View Reports	30
Generate a Report	30
View a Report	30
Scripted deployment	31
Command-line interface	31
Command-line syntax	31
Command-line arguments	32
Switch update commands	37
Component configuration for Windows components only	38
Command-line examples	38
Return codes	40
Windows smart component return codes	40
Linux smart component return codes	40
Linux RPM return codes	41
Input files	41
Command-line usage of input file	42
Input file format and rules	42
File encoding	42
Error reporting	43
Input file parameters	43
Reports	51
Advanced topics	56
Configuring IPv6 networks with HP Smart Update Manager	56
Configuring IPv6 for Windows Server 2003	56
Configuring IPv6 for Windows Server 2008	57
Limitations of IPv6 for Windows Server 2003 and Windows Server 2008	58
Configuring IPv6 for Linux	58
Limitations of IPv6 for Linux	60
Server virtualization detection and support	60
Troubleshooting	61
Recovering from a failed ROM upgrade	61
Recovering from a failed system ROM upgrade	61
Redundant ROM recovery	61
ROMPaq recovery	61
Recovering from a failed option ROM upgrade	62
Array controller ROMs	62
Lights-Out management ROMs	62
Recovering from an installation failure	63
Collecting trace directories	63
Recovering from a discovery failure	64
Troubleshooting connection errors	64
HP SUM hangs during discovery	65
HP SUM hangs during boot	65
Recovering from a loss of Linux remote functionality	66
Configuring firewall settings	66
Recovering from a blocked program on Microsoft Windows	66
Configuring Windows firewall settings	66
Enabling ports in HP Smart Update Manager	67
Recovering from operating system limitations when using a Japanese character set	69
Displaying the user-specified reboot message using a Japanese character set when running on a Linux operating system	69
Rebooting with the user-specified reboot message using a Japanese character set when running on a Windows operating system	69
Running in a directory path containing multi-byte characters	69
Recovering a lost HP Smart Update Manager connection	69
HP Smart Update Firmware DVD mounted using iLO virtual media	69
Troubleshooting HP Smart Update Manager in IPv6 networks	70
Troubleshooting HP Smart Update Manager in IPv6 Windows Server 2003 environment	70
Troubleshooting HP Smart Update Manager in IPv6 Windows Server 2008 environment	71
Troubleshooting HP Smart Update Manager in IPv6 Red Hat and Novell SUSE-based Linux environments	71
HP SUM found new hardware message	72
Non-matching systems error reported when building source Linux RPMs or installing Linux RPMs built from source	72
Linux component version discrepancy for source RPMs	72
HP SUM displays No components found in the selected repository(ies) message	73
Additional/Optional Actions columns are grayed when HP SUM is maximized	73
Installation of components failed with 'Update returned an error' when installing Linux RPMs	73
HP SUM fails on Windows Vista® due to McAfee firewalls	73
Downgrade of ProLiant G6 Server ROM from 2010.03.30 or later to 2010.03.01 or earlier using HP SUM is not supported	76
Technical support	77
Reference documentation	77
Operating system information	77
HP contact information	78
Acronyms and abbreviations	79

HP Integrity Superdome 2 8/16 HP Smart Update Manager 5.0 User Guide - Page 67

Enabling ports in HP Smart Update Manager

Page 67 highlights