Managing your HP servers through firewalls with HP SIM (481364-002, February 2008)
21
Table 17 Ports for communication between the CMS and managed nodes
CMS Managed
System
Port Protocol
1
Description
In
2
Out In Out
Y Y 5989 HTTPS Used by WBEM.
Y Y 2381 HTTPS Used by web agents.
Y Y 22 SSH-2 Used by the Distributed Task Facility (DTF).
Y Y 9143 OpenSSL Used by Application Discovery.
Y 9617,9618 Global Workload Manager uses on CMS.
Y Y 280 HTTP Web server for HP SIM; Web agent auto-start
port
Y 50000 HTTPS HPSIM Webserver
Notes:
1
All ports are for TCP and UDP.
2
The CMS will normally have all managed system ports open, as the CMS is a managed system itself. Firewalls may be
configured to block these ports if the CMS is not to be managed from another system.
HP Smart Update Manager
Table 18 HP SUM ports for Windows
CMS Managed
System
Port Protocol
1
Description
In
2
Out In Out
Y Y 445 and
137/138/1
39
TCP and
UDP
These ports are needed to connect to the remote
ADMIN$ share on target servers (port 137 only if
you are using NetBIOS naming service)
Y Y 60000-
60007
SSL Random ports are used in this range to pass
messages back and forth between the local and
remote systems via SSL
Y Y 80, 63000-
63005
HTTPS Used for passing files to the target and retrieving
the logs via an internal mini-https server. Uses
port 80 if it is available or a random port
between 63000 and 63005 if it is not. Allows
updates of the iLO firmware without the need to
access the host server. This will allow servers
running VMWare or other virtualization platforms
to update their iLO without the need to reboot
their server or migrate their VMs to other servers.
Y Y 50116 TCP This is port is used in CMS
Y Y 51268 TCP This port is used in target machine
Y Y 61000-
61007
These ports are used from the target server back
to the system running HP Smart Update Manager.
The same mechanism is used by the remote
access code as the 60000 ports, with the first
trial port as 61000. There is no guarantee that
the upper limit is 61007 when a conflict occurs.
For the case of ipv4-only and one NIC, the lowest
available one is used by HP Smart Update