SSH

Default Ports

The table below lists the default ports used by Tectia Manager. These may be needed for configuring firewalls appropriately.

The following abbreviations are used in the table:

  • ANY = any port, usually a non-privileged port between 1024 and 65535

  • MP = Management Protocol

  • Admin = a host with the administration interface (through a web browser)

  • Agent = a Management Agent host (a managed host)

  • Server = the Management Server host

Table A.1. Default ports

Host 1Host 2ProtocolDescription
Admin: ANY →Server: 22TCP (ssh)Remote administration of the Management Server
Admin: ANY →Server: 80HTTPConnecting to the administration interface
Admin: ANY →Server: 443HTTPSSecure administration interface
Agent: ANY →Server: 17235TLS+MPManagement connection (initiated by the agent)
Agent: ANY →Server: 80HTTPInternal CA CRL distribution point (optional)
Server: ANY →Agent: 22TCP (ssh)Management Agent upload during initial deployment (optional)
Server: ANY →Agent: 23TCP (telnet)Management Agent upload during initial deployment (optional)
Server: ANY →Agent: 513TCP (rlogin)Management Agent upload during initial deployment (optional)

The ports used for the management connection and the administration interface can be adjusted in the Management Server configuration file /etc/opt/ssh-mgmt/server/tectia-manager.cfg.