7.0.8 Insight Remote Support Security White Paper
49
Appendix H: Summary of Network Ports for Remote Device
Access
The following tables summarize all ports that might be used in Remote Device Access. See Table A-1 for ports that are
required for basic system operation.
H.1 Customer Access System (CAS)
Table H.1 CAS Connectivity - Firewall/Port Requirements
Protocol
Ports
Source
Destination
Function
Configurable
Optional
TCP
22
HP Remote
Access
Connectivity
System (RACS)
CAS
SSH Tunnel (SSH-Direct only)
No
Required for
SSH-Direct
ICMP
N/A
CAS
Target System
Including Hosting
Device
Provides system reachability (ping) check
during installation
No
Recommended
ICMP
N/A
Target System
Including
Hosting Device
CAS
Provides system reachability (ping) check
during installation.
No
Recommended
TCP
22
CAS
Target System
Including Hosting
Device
SSH command-line access
Yes
Optional
TCP
23
CAS
Target System
Including Hosting
Device
Telnet command-line access if SSH is not
available.
Yes
Optional
TCP
80
CAS
Target System
Including Hosting
Device
HTTP connection forwarded from HP
through CAS to Hosting Device or
monitored system
Yes
Optional
TCP
3389
CAS
Target System
Including Hosting
Device
MS RDP. Remote Desktop Connection
forwarded from HP through CAS to Hosting
Device or monitored system
Yes
Optional
TCP
5800
CAS
Target System
Including Hosting
Device
VNC Web access
Yes
Optional
TCP
5900
CAS
Target System
Including Hosting
Device
VNC access
Yes
Optional
TCP
other
CAS
Target System
Including Hosting
Device
Customer-specified port and application
protocol SSH-forwarded from HP
Yes
Optional
TCP
other
Customer
Clients
CAS
Other access methods for CAS
administration
Yes
Optional
TCP
22
Customer's SSH
Client
Target System
Including Hosting
Device
SSH Command-line access
Yes
Optional