Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1107
Views
3
Helpful
3
Replies

APIC-EM Firewall Ports Opening?

keitwils
Cisco Employee
Cisco Employee

‎07-04-2017 12:54 AM - edited ‎03-12-2019 04:10 PM

I see that this document recommends the ports that SHOULD be open on the Firewall or is it just SSH & SNMP?

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/application-policy-infrastructure-controller-enterprise-module/1-1-x/hardware-guide/b_apic-em_hardware_install/b_apic-em_hrd_install_appendix_01001.pdf

 

Is this mandatory?

What stops working if we dont open them?

Keith

Labels:
3 Replies 3

aradford
Cisco Employee
Cisco Employee

‎07-04-2017 01:15 AM

Hi Keith,

it depends what you are doing.  I assume you are talking about inbound connections.

22 + 443  + 14141 are required for management.

500 can be required for inter cluster comms through a FW

67 + 80 + 123 can be required for PnP (With certificates, you need NTP)

162 can be required for host update notifications (SNMP traps)

16026 is required for IWAN (APIC-EM is a CA)

0 Helpful

aradford
Cisco Employee
Cisco Employee
In response to ngoldwat

‎07-11-2017 06:25 AM

Thanks Nick,

good to see we have finally turned off 14141.

Adam

0 Helpful
Customers Also Viewed These Support Documents