...
From | To | Ports (Defaults) | Protocol | Usage | ||
|---|---|---|---|---|---|---|
DPOD Cell Manager (external IP address) | Each Monitored DeviceEach DataPower Gateway | 5550 (TCP) | HTTPS | Monitored device administration DataPower Gateway administration SOAP management interface. If the SOMA port is different than 5550 - the port should be changed accordingly. | ||
5554 (TCP) | HTTPS | DataPower Gateway administration REST management interface. If the ROMA port is different than 5554 - the port should be changed accordingly. | ||||
DPOD Cell Manager (external IP address) | DPOD Cloud Agent Manager (the k8s cluster) | 443 (TCP) | HTTPS | Receive Cloud Agent configuration and discovered gateways, access the containerized gateways administration management interface. | ||
DPOD Cell Manager (external IP address) | DNS Server | 53 (TCP and UDP) | DNS | DNS services. Static IP address may be used. | ||
DPOD Cell Manager (external IP address) | NTP Server | 123 (UDP) | NTP | Time synchronization | ||
DPOD Cell Manager (external IP address) | Organizational mail server | 25 / 465 / 587 (TCP) | SMTP/S | Send reports/alerts/shares/etc. by email | ||
DPOD Cell Manager (external IP address) | LDAP | 389 / 636 (TCP) 3268 / 3269 (TCP) | LDAP/S | Authentication & authorization. Can be over SSL. | ||
DPOD Cell Manager (internal IP address) | Each DPOD Federated Cell Member (internal IP address) | 443 (TCP) | HTTPS | Communication (data + management)DPOD Cell Manager (internal IP address) | ||
Each DPOD Federated Cell Member (internal IP address) | 22 (TCP) | SSH | SSH root access is needed for the cell installation and for admin operations from time to time. | DPOD Cell Manager (internal IP address) | Each DPOD Federated Cell Member (internal IP address) | |
9300-9305 (TCP) | OpenSearch | OpenSearch Communication (data + management) | ||||
DPOD Cell Manager (external IP address) | Each DPOD Federated Cell Member (external IP address) | 60000-60003 (TCP) | Syslog | Syslog keep-alive data | DPOD Cell Manager (external IP address) | Each DPOD Federated Cell Member (external IP address) |
60020-60023 (TCP) | HTTP | WS-M keep-alive data | ||||
NTP Server | DPOD Cell Manager (external IP address) | 123 (UDP) | NTP | Time synchronization | ||
DPOD Users IPs | DPOD Cell Manager (external IP address) | 443 (TCP) | HTTPS | DPOD's Web Console | ||
DPOD Server Admins IPs | DPOD Cell Manager (external IP address) | 22 (TCP) | SSH | SSH | ||
Each DPOD Federated Cell Member (internal IP address) | DPOD Cell Manager (internal IP address) | 443 (TCP) | HTTPS | Communication (data + management) | Each DPOD Federated Cell Member (internal IP address) | DPOD Cell Manager (internal IP address) |
9200, 9300-9400 (TCP) | OpenSearch | OpenSearch Communication (data + management) | ||||
Each DPOD Federated Cell Member (external IP address) | DPOD Cloud Agent Messaging (the k8s cluster) | 30100-30110 (TCP) | Kafka | Get the containerized gateways collected data (Syslog, WS-M payloads, API-Connect Analytics Offload). | ||
Each DPOD Federated Cell Member (external IP address) | DNS Server | 53 (TCP and UDP) | DNS | DNS services | ||
Each DPOD Federated Cell Member (external IP address) | NTP Server | 123 (UDP) | NTP | Time synchronizationEach Monitored Device | ||
Each DataPower Gateway | Each DPOD Federated Cell Member (external IP address) | 60000-60003 (TCP) | Syslog | Syslog data | ||
Each Monitored Device | Each DPOD Federated Cell Member (external IP address) | 60020-60023 (TCP) | HTTP | WS-M payloads (optional) | ||
API-Connect Analytics Ingestion Pods | Each DPOD Federated Cell Member (external IP address) | 60020-60023 (TCP) | HTTP/S | API-Connect Analytics Offload (optional) | ||
NTP Server | Each DPOD Federated Cell Member (external IP address) | 123 (UDP) | NTP | Time synchronization | ||
DPOD Server Admins IPs | Each DPOD Federated Cell Member (external IP address) | 22 (TCP) | SSH | SSH |
...