SSH Tectia

SSH Tectia Manager Default Ports

The table below lists the default ports used by SSH Tectia Manager. These may be needed for configuring firewalls appropriately.

The following abbreviations are used in the table:

  • ANY = any port, usually a non-privileged port between 1024 and 65535

  • MP = Management Protocol

  • Admin = a host with the administration interface (through a web browser)

  • Agent = a Management Agent host (a managed host)

  • Server = the Management Server host

Table A.1. Default ports

Host 1Host 2ProtocolDescription
Admin: ANY →Server: 22TCP (ssh)Remote administration of the Management Server
Admin: ANY →Server: 80HTTPConnecting to the administration interface
Admin: ANY →Server: 443HTTPSSecure administration interface
Agent: ANY →Server: 17235TLS+MPManagement connection (initiated by the agent)
Agent: ANY →Server: 80HTTPInternal CA CRL distribution point (optional)
Server: ANY →Agent: 22TCP (ssh)Management Agent upload during initial deployment (optional)
Server: ANY →Agent: 23TCP (telnet)Management Agent upload during initial deployment (optional)
Server: ANY →Agent: 513TCP (rlogin)Management Agent upload during initial deployment (optional)

The ports used for the management connection and the administration interface can be adjusted in the SSH Tectia Manager configuration file /etc/opt/ssh-mgmt/server/tectia-manager.cfg.