Communication ports and protocols

This topic lists the default ports and protocols used by the various product components, depending on user roles and permissions.

The following information is useful for one-time configurations, daily operations, and understanding how various product components communicate with one another. This information can also be used to decide which ports to open, depending on your security requirements. 

Note

For a single server deployment, the Indexer and Configuration Database ports are not accessible from other hosts (by default). In this case, you do not need to set up a firewall for these ports.

Related topics

Where to find more information

Architecture

Planning

Component

Default Port

From

To

Protocol

Useful for daily operations

Console Server 

9797
(configurable)

CLI/web browser

Console Server

HTTP

9443
(configurable)

 CLI/web browser

Console Server 

HTTPS 

Useful for data collection

Collection Station (Configuration Channel)

8080
(configurable)

Collection Agent

Collection Station

HTTP

Collection Station (Payload Service)

41414
(configurable)

Collection Agent

Collection Station

Avro

Managed node (target host from which you want to collect data)

22

Collection Station

OR

Collection Agent

Managed node from which data must be collected remotely

SSH

Managed node (target host from which you want to collect data)

445

Collection Station

OR

Collection Agent

Managed node from which data must be collected remotely

SMB

Useful for understanding internal communications between the IT Data Analytics product components

*The following ports are internal and do not require any firewall changes for a single-server deployment.

Search

9797
(configurable)

Console Server

Search

HTTP

Configuration Database

9999
(configurable)

Console Server

Configuration Database

JDBC

9999
(configurable)

Search

Configuration Database

JDBC

9999
(configurable)

Collection Station

Configuration Database

JDBC

Indexer

9300
(configurable)

Console Server

Indexer

TCP

9300
(configurable)

Search

Indexer

TCP

9300
(configurable)

Collection Station

Indexer

TCP

Collection Station

8080

(configurable)

Console Server

Collection Station

HTTP

Useful for understanding communication between product components and integrations

Email integration
(SMTP server used for sending email)

25

Search

SMTP server

SMTP

25

Console Server

SMTP server

SMTP

BMC ProactiveNet integration

(Operations Console)

80

(configurable)

Search

BMC ProactiveNet server

HTTP

BMC TrueSight Presentation Server

443

(configurable)

BMC TrueSight Presentation Server

HTTPS

BMC ProactiveNet cell integration

(Event management)

1828
(configurable)

Search

BMC ProactiveNet server

TCP

Collection Station

BMC Atrium Single-Sign On

8443

(configurable)

Console Server

BMC Atrium Single-Sign On server

HTTPS

For more information about the ports required for an HTTPS connection, see the instructions for configuring a secured connection.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*