Page tree

Skip to end of metadata
Go to start of metadata

The following table explains the default configurations of protocols and ports for different services.

Service

Port

Protocol

Flow

Function

Default state

Port configurable

Notes

HTTPS

443

TCP

Inbound

Management UI

Enabled

Yes

Hardened Apache/Tomcat

HTTPS443TCPInboundLog retrievalDisabledYes 
HTTPS443TCPOutbound

Communication between the following components and systems:

  • AM Console and Analyzer
  • Analyzer and Collector
  • Collector and a Cloud Probe
  • REST API calls between systems
  • Analyzer and a PATROL Agent (running the BMC PATROL Knowledge Module for End User Experience Management)
  • Synthetic TEA Agent and AM Console
  • Synthetic TEA Agent and Collector
EnabledYes

If the two components using this port are on different sides of a firewall, make sure to allow traffic through the port on your firewall.

Use port 4443 for communications between the Cloud Probe and APM Central (if the default ports are in use).

HTTP

80

TCP

Inbound

Redirect to 443 for UI

Enabled

Yes

Hardened Apache/Tomcat

HTTP80TCPInboundLog retrievalDisabledYes 

SSH (CLI)

22

TCP

Inbound

Initial configuration

Disabled

No

Only SSHv2 supported

For troubleshooting, the command-line interface (CLI) of all components requires access via port 22 (SSH).

SNMP

161

UDP

Inbound

SNMP polling

Disabled

Yes

v1/v2/v3 supported

v3 security optional

SNMP162UDPOutbound

SNMP traps (including communication from the Analyzer to trap-based event integrations with BMC PATROL and BMC ProactiveNet)

DisabledYes

v1/v2/v3 supported

v3 security optional

SMTP

25

TCP

Outbound

Email alerts/reports

Disabled

Yes

Secure STARTTLS authentication optional

SMTP465TCPOutboundEmail alerts/reportsDisabledYesSecure SMTPS authentication optional

Syslog

514

UDP

Outbound

System events

Disabled

No

 

NTP

123

TCP / UDP

Inbound
Outbound

Time sync

Disabled

No

 

LDAP389TCPOutboundLDAP user account authenticationDisabledYesNon-Secure or LDAPS (Secure LDAP, also known as LDAP over SSL)

RcSP

(Record Streaming Protocol)

 

22031

22032

22033

TCP

Inbound

Network traffic collection by an Analyzer or Monitor

  • Port 22031 streams Objects.
  • Port 22032 streams Pages.
  • Port 22033 streams Sessions.
EnabledNo

TLS/SSLv3 secure

RcSP is a BMC proprietary protocol.

RcSP

22031

22032

22033

TCPOutboundSend traffic data from an Analyzer or Monitor to the Performance Analytics Engine for processingEnabledNo

TLS/SSLv3 secure

Oracle Listener

1521

TCPInboundCommunication between the Extended Reporting data warehouse (Oracle instance) and the SAP BusinessObjects Central Management ServerEnabledYes 
NFS / CIFS

445

TCPInboundCommunication between the Aggregation Server and the Network Attached Storage (NAS) deviceEnabledNo 

HTTP

HTTPS

8100

8143

TCPInboundCommunication to a Diagnostics Portal from a Diagnostics Collector, Diagnostics Agent, or the AM ConsoleEnabledYes 

HTTP

HTTPS

8200

8243

TCPInboundCommunication to a Diagnostics Collector from a Diagnostics Portal or Diagnostics AgentEnabledYes 

Note

 For outbound communication, the ports listed are the ports to which a component connects.

Related topics

The following topics provide information on how to the configure ports utilized by the APM system components:

 

 

 

1 Comment

  1.