ZyXEL Vantage CNM Quick Start Guide - Page 9

ENGLISH 3.1 Example Deployment Scenario In most network environments the Vantage CNM server is deployed on a LAN behind a NAT router with firewall enabled. Port forwarding must be enabled on the NAT router and firewall rules must be configured between the LAN and WAN. In the following figure the managed device (A) and the Vantage CNM client (B) are both communicating with Vantage CNM (and the other servers it uses) from the WAN via the NAT router (C). A B C If Vantage CNM is behind a firewall, you must setup firewall rules to allow traffic to flow to/from Vantage CNM to the ZyXEL devices. You must also configure NAT port forwarding to allow the following traffic to be forwarded to Vantage CNM via the following ports: Vantage CNM Server: FTP Server (FTP): Mail Server (SMTP): UDP 1864, UDP 11864, TCP 443, TCP 8080 TCP 20, TCP 21 TCP 25 If you choose to install Vantage Report (VRPT) on the same server as the Vantage CNM server, you also need to setup firewall rules and NAT port forwarding on the NAT router for the following ports: Vantage Report: UDP 514, TCP 8088 " You also need to enable NAT loopback on the NAT router if both your Vantage CNM client and server are in the LAN network. 8