07-04-2017 12:54 AM - edited 03-12-2019 04:10 PM
I see that this document recommends the ports that SHOULD be open on the Firewall or is it just SSH & SNMP?
Is this mandatory?
What stops working if we dont open them?
Keith
07-04-2017 01:15 AM
Hi Keith,
it depends what you are doing. I assume you are talking about inbound connections.
22 + 443 + 14141 are required for management.
500 can be required for inter cluster comms through a FW
67 + 80 + 123 can be required for PnP (With certificates, you need NTP)
162 can be required for host update notifications (SNMP traps)
16026 is required for IWAN (APIC-EM is a CA)
07-11-2017 05:06 AM
07-11-2017 06:25 AM
Thanks Nick,
good to see we have finally turned off 14141.
Adam
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide