Firewall Ports Required for NAC manager to manage/add Cisco switch
Hi,
I am trying to add cisco switches to the NAM, however i am not able to add the switch as I am getting the error "unable to control switch" I have tried to open ports 161-162 on the firwall; if i was to allow any traffic between the NAM and switch, the cisco NAM is able to add/manage the switch.
Not sure what other ports may be required for cisco NAM to manage the switch?
Thanks.
Hi,
AFAIK, only the UDP ports 161-162 for the SNMP communication need to be open.
Please make sure you have configured the correct port on the switch:
(config)# snmp-server host 172.16.1.61 traps version 2c cam_v2 udp-port 162 mac-notification snmp
If still not working i would check the logs on the firewall for any blocked traffic between the CAM and the switch.
HTH,
Tiago
If this helps you and/or answers your question please mark the question as "answered" and/or rate it, so other users can easily find it.
Similar Messages
-
Hardware requirement for Oracle Universal Content Management
Hi Experts,
What are the Hardware requirements for Oracle Universal Content Management ?
Regards
Nasirdoes this help?
Oracle WebLogic Server 11g (10.3.3) System Requirements
Oracle WebLogic Server supports a number of platforms including:
– Linux
– Sun Solaris
– HP-UX
– Windows 2000, 2003 Server, XP
• Processor:
– At least one 1 GHz CPU is recommended.
– Intel and UNIX processors are supported.
• Hard disk drive:
– A full installation requires approximately 2 GB of disk space.
– The Linux value for file descriptors must be 4096 or greater.
– Samples are optional (download from OTN).
• Memory:
– A minimum of 2 GB RAM is recommended for WebLogic
Server.
– Consider the number of simultaneous users and sessions.
– Consider in-memory programs, such as Coherence.
System Requirements
The following are some of the basic system requirements for Oracle WebLogic Server 10.3.3:
• The Oracle WebLogic Server installer requires a Java Runtime Environment (JRE) to run.
Oracle WebLogic Server is certified with JDK6.0. As part of the installation, it gives the option
to install the JRockit JDK 6.0 version. As part of postinstallation, prefix the bin directory of
the JDK to the PATH environment variable.
• The Oracle WebLogic Server installer requires a temporary location in which to unpack the
files. Typically, the installer requires approximately 2.5 times the amount of temporary space
that is required by the installed files.
Note: In this release of WebLogic Server, users can choose which components of WebLogic Server
they use. Specifically, this release allows users to choose whether the Enterprise JavaBeans (EJB),
Java Message Service (JMS), and J2CA services are started when WebLogic Server is started. The
benefit of excluding some services is reduced memory footprint and reduced startup time. -
Which parameters are required for generating a solution manager key?
Hello All,
I generated a key in Solution Manager, to install a SAP NW 2004s SR1.
But I receive an error during the installation from the SAPINST:
<b>"SAP Solution manager key for the instance number... is invalid ".</b>
I already changed the parameters for generating the key, changed the instance number, hostname, but I still receive the same error.
Could someone tell me which parameters <u>exactly</u> are required for generating a solution manager key?
thanks
ThomasDear Sri,
this is exactly what I have entered, I still get the same error message.
<u>My entries in SAPINST:</u>
SAPinst founds one system instance on the host with
the Instance number 00,
the Instance name SCS00.
And ask for the Central Instance parameters:
there I enter<b> 01</b> for the central Instance number,
the hostname
and the solution manager key generated for the instance number <b>01</b>!
best regards
Thomas -
Patches required for installing the configuration management workbench?
Hi Team,
Please list all patches required for installing the configuration management workbench in Oracle Apps version 11.5.10.2 ?
Please let me know.
Thanks,
Suman V.Hi;
I also suggest to check:
How to Configure the Oracle Configuration Manager with Support WorkBench [ID 1174943.1]
Regard
Helios -
Ports required for voice gateway registration
Hi,
Currently our remote office voice gateway is trying to register to the CM and in between there is a firewall. We have opened port DNS, NTP, 2427 and 2428 but it still showing registering to the call manager. What other ports shall we open to make it works?
What about the port requirement for CUE?
Thanks.For MGCP:
DNS
NTP
UDP 2427
TCP 2428
TFTP (UDP 69)
For CUE, here is a link you may find helpful:
http://www.cisco.com/en/US/partner/netsol/ns340/ns394/ns165/ns391/networking_solutions_design_guidance09186a00801f8e31.html#wp41149
hth,
nick -
Cisco Clean Access Update Website and Firewall Port Required
Hi,
I was wondering if anyone may know the website the clean access manager would be using to upate as well as the firewall port required. This is due to a firewall in place. Based on some reading, not sure if it uses other website besides the following http://www.perfigo.com/clean_machine_1/version-se.txt on port 80.
Thanks.Hi,
For CAM checks and rules update, that's the only site required.
HTH,
Faisal
If you find this post helpful, please rate so others can find the answer easily -
Port required for Veritas cluster implementation
hello there ,
i need to know what are the port required for veritas cluster implementation on Sun Messaging Server 6.2 . anybody care to help me on this ?
thanks> We are planning a 2 node Oracle 9i RAC cluster on Sun
Cluster 3.Good. This is a popular configuration.
Can you please explain these 2 questions?
1)
If we have a hardware disk array RAID controller with
LUNs etc, then why do we need to have Veritas Volume
Manager (VxVM) if all the LUNS are configured at a
hardware level?VxVM is not required to run RAC. VxVM has an option (separately
licensable) which is specifically designed for OPS/RAC. But if
you have a highly reliable, multi-pathed, hardware RAID platform,
you are not required to have VxVM.
2)
Do we need to have VxFS? All our Oracle database
files will be on raw partitions.No.
IMHO, simplify is a good philosophy. Adding more software
and layers into a highly available design will tend to reduce
the availability. So, if you are going for maximum availabiliity,
you will want to avoid over-complicating the design. KISS.
In the case of RAC, or Oracle in general, many people do use
raw and Oracle has the ability to manage data in raw devices
pretty well. Oracle 10g further improves along these lines.
A tenet in the design of highly available systems is to keep
the data management as close to the application as possible.
Oracle, and especially 10g, are following this tenet. The only
danger here is that they could try to get too clever, and end up
following policies which are suboptimal as the underlying
technologies change. But even in this case, the policy is
coming from the application rather than the supporting platform.
-- richard -
Hi All,
What are the ports required for the Audio, Video and A/V conferencing when the following clients are enabled for QoS in Lync 2013 server?
Client Type
Port range and Protocol required for Audio
Port range and Protocol required for
Video
Port range and Protocol required for
A/Vconferencing
Windows Desktop Client
Windows mobile App
Iphone
Ipad
Andriod phone
Andriod Tablet
MAC desktop client
Please advise. Many Thanks.Out of the box, 1024-65535 for all of the client ports. :)
https://technet.microsoft.com/en-us/library/gg398833.aspx
You'll want to tune your client ports a bit
https://technet.microsoft.com/en-us/library/jj204760.aspx as seen here, and then the client ports would use those ranges which is easier to set QoS markings. I'm not sure the mobile clients respect that setting.
Elan's got the best writeup for Windows clients here:
http://www.shudnow.net/2013/02/16/enabling-qos-for-lync-server-2013-and-various-clients-part-1/
However, the marking of the packets is the tricky part. Windows can do it via Group Policy, but for the other clients you'll need to have the network specifically prioritize ports regardless of DSCP markings. You have to do it based on ports
as the traffic could be peer to peer.
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
SWC Unified Communications
This forum post is based upon my personal experience and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs. -
We're using SharePoint 2010, I'm the system admin for a SharePoint farm. We enabled SharePoint Search by adding a Search Service APplication. One of the crawl report timer job is failing every 5 minte with the error "Cannot connect to remote server".
After digging around, we found that the server running the timer job tries to connect to the SearchAdmin.svc on the index server, over HTTPS / port 32844 However, communication over SSL via a non default port is blocked by our firewall.
According to this article: https://technet.microsoft.com/en-us/library/cc262849.aspx the default is HTTP for communication
between web servers. How is it possible that it's trying to connect over SSL?Hi,
Quoted from
https://technet.microsoft.com/en-us/library/cc262849.aspx#ServiceApp :
You can change the protocol and port binding for each service application. On the Service Applications page in Central Administration, select the service application, and then click
Publish.
Here is an article for configuring Windows firewall port rules for SharePoint using PowerShell in case you need:
http://www.xylos.com/default.aspx?id=1050
Regards,
Rebecca Tu
TechNet Community Support
Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
[email protected] -
Ports Required for SCCM Distribution point
Hi All,
Can anybody tell me the ports required for distribution point. as in I have a site server with distribution point in HO, i want to have a distribution point server on a remote site. i went through the microsoft document which says u require port 445 open between site server and distribution point and it says u only require port 80 or 443 open between distribution point and branch distribution point. little confused!!!. which ports i require to be open between site server with distribution and remote site distribution point.
Cheers.Hi,
Regarding the doc here:
http://technet.microsoft.com/en-us/library/bb632618.aspx
Site Server -- > Distribution Point
SMB 445 TCP
RPC Endpoint Mapper 135 UDP and TCP
RPC dynamic TCP
Site Server < -- > Site Server
SMB 445 TCP
Point to Point Tunneling Protocal (PPTP) 1723 TCP
Follow me through my blog and Twitter! -
Help define the requirements for an Oracle Spatial management tool
Hi,
We are developing a tool that, we hope, will be indispensable for all Oracle Spatial and Locator dbas/users. We've released version 1.0, but we need your help to define the requirements for the next version.
What features would you like to have in a management tool for your spatial databases?
The features we've got so far:
1. Viewing of vector data in a map + attributes
2. Loading from shapefiles
3. Exporting to shapefiles
4. Validating metadata, indexes and spatial data.
We are adding editing of vectors in the next version - basic stuff for add, update and delete.
But there must be a lot more. What do you find difficult to do in Oracle Spatial/Locator? What would you like in a tool such as this?
Any feedback either to myself or the forum is much appreciated.
cheers,
Andrew
[email protected]
PS If you like to have a look at what we have done so far, go to http://www.geometryit.com/products/spatialConsole.phpAndrew knows what I have asked for but for others to think about and to start
the ball rolling, here's what they are:
1. Ability to enter own SQL commands but with PARAMETERS for attributes
and shapes as in the following examples:
SELECT ...
FROM my_spatial_table a
WHERE a.ATTRIBUTE = :attr
AND MDSYS.SDO_RELATE(a.shape,:polygon,'mask=anyinteract') = 'TRUE'
When executed the attribute value is asked for via a input box (data type?)
and the user is asked to define the SDO_GEOMETRY for the :polgygon parameter via mouse clicks on the screen.
Similarly, this would work for INSERT, UPDATE and DELETE...
INSERT INTO my_spatial_table (shape) values(:polygon)
The data type of an attribute parameter could be determined in two ways:
a) By querying the Oracle catalog;
b) By using a "PARAMETERS" command before the query as follows
PARAMETERS name type [(size)] [, name type [(size)] ...]
The PARAMETERS declaration has these parts:
name The name of the parameter.
type The type of the parameter.
size The size of the parameter in characters or bytes.
2. When executing an SQL SELECT statement I would like the tool
to suggest the HINTS that are needed to improve performance.
3. Following on from 2, I would like to Tick an option that would return the
EXPLAIN PLAN that the query optimizer used when executing my query.
4. The tool has to support ALL Oracle's spatial vector data types.
5. It would be nice to be able to work with GeoRasters. Since Spatial Console
imports/exports shapefiles why not the same for rasters. However, the problem
with supporting foreign data formats is WHERE DO YOU STOP!!!!!
6. You could allow for the styling of the Spatial Console to be stored in the MapViewer catalogs or use the MapViewer catalogs when styling an Sdo_Geometry if it exists (I note that your tool extracts the SDO_METADATA
why not the MapViewer metadata as well)?
regards
S. -
Ports required for GG setup (Oracle to Oracle replication )
GG version: 11.2.1.0.1
OS : RHEL 5.4
We are going to configure GoldgenGate which is going to replicate the DMLs for few tables (Uni-directonal) from source to target.
Since there is a firewall between source and target, We need to request the network team to open ports at both source and target servers.
For manager process , we are going to use the default 7809 both at source and Target. What are the other ports that we need to request the network team to open for both servers ?Hi,
If a firewall is being used at an Oracle GoldenGate target location, additional ports are required on the target system to receive dynamic TCP/IP communications from remote
Oracle GoldenGate processes. These ports are:
● One port for each Collector process that is started by the local Manager to receive propagated transaction data from remote online Extract processes. When an Extract
process sends data to a target, the Manager on the target starts a dedicated Collector process.
● One port for each Replicat process that is started by the local Manager as part of a remote task. A remote task is used for initial loads and is specified with the RMTTASK
parameter. This port is used to receive incoming requests from the remote Extract process.
● Some extra ports in case they are needed for expansion of the local Oracle GoldenGate configuration.
● Ports for the other Oracle GoldenGate products if they interact with the local Oracle GoldenGate instance, as stated in the documentation of those products.
To specify these ports, use the DYNAMICPORTLIST parameter in the Manager parameter file.
Follow these guidelines:
● You can specify up to 5000 ports in any combination of the following formats:
7830, 7833, 7835
7830-7835
7830-7835, 7839
● The ports must be unreserved and unrestricted.
● Each Manager instance on a system must use a different port list..
Although not a required parameter, DYNAMICPORTLIST is strongly recommended for best performance. The Collector process is responsible for finding and binding to an available
port, and having a known list of qualified ports speeds this process. In the absence of DYNAMICPORTLIST (or if not enough ports are specified with it), Collector tries to use port 7840 for remote requests. If 7840 is not available, Collector increments by one until it finds an available port. This can delay the acceptance of the remote request. If Collector runs out of ports in the DYNAMICPORTLIST list, the following occurs:
● Manager reports an error in its process report and in the Oracle GoldenGate ggserr log.
● Collector retries based on the rules in the Oracle GoldenGate tcperrs file
For more information about PORT and DYNAMICPORTLIST, see the Oracle GoldenGate Windows and UNIX Reference Guide.
Hopefully this will help you
Annamalai. -
Ports required for Goldengate Setup 7809......
hi,
i am using default port 7809 on my server.we have also firewall. we have just open only one port.i.e 7809 Telnet srev2 7809... connected
but problem in data pump process, can't be establish the Network connection with remote server.
So is there any other ports that should be open on Source & Target server as well.
Regards,
AMSII1.Paste your source and target mgr.prm and data pump paramater files entries.
2. What is the exact error message in report file?
3. Did you open port for source system as well as target systems?
for more details ,
Assigning Manager a port for local communication
The Manager process in each Oracle GoldenGate installation requires a dedicated port for communication between itself and other local Oracle GoldenGate processes. To specify this
port, use the PORT parameter in the Manager parameter file. Follow these guidelines:
1. The default port number for Manager is 7809. You must specify either the default port number (recommended, if available) or a different one of your choice.
2. The port must be unreserved and unrestricted.
3. Each Manager instance on a system must use a different port number.
Use the DYNAMICPORTLIST parameter to specify a list of available ports to which the following,
local Oracle GoldenGate processes can bind for communication with a remote Oracle GoldenGate process:
● Collector: to communicate with a remote Extract to receive incoming data.
● Replicat: to communicate with a remote Extract to receive data during an initial load task.
● Passive Extract: to communicate with a remote Collector
● GGSCI: to issue remote commands
Hopefully this will help you
Annamalai. -
Firewall Ports directions for Client Push Installation
Hello,
i take offer a running SCCM 2012 R2 Client Management but there is no Client Push implemented.
So i will now use Client Push and we open the Ports 135 and 445 now i have one Question to use RPC Dynamic Ports,
they are only from Server -to-> Client or both direction?
I read a lot of them but nobody wrote about the directions, my problem is that our SCCM 2012 is installed in a management network and the connect to the clients are controlled with a Firewall and now for a change i must known the direction to change it.
The Port description from MS i read often but not very helpful with direction. :)
with best regards
AndréTo add-on to Torsten. It is also possible to restrict your dynamic RPC ports, as explained at articles like these:
http://www.windowsnetworking.com/kbase/WindowsTips/WindowsServer2008/AdminTips/Admin/DefaultDynamicPortRange.html
http://support.microsoft.com/kb/154596
My Blog: http://www.petervanderwoude.nl/
Follow me on twitter: pvanderwoude
Have you ever successfully done this? I tried once early in CM07 and it didnt' work. Submitted my findings to MS and a reference from the CM docs to the article you posted was removed from the CM docs.
John Marcum | Microsoft MVP - Enterprise Client Management
My blog: System Center Admin | Twitter:
@SCCM_Marcum | Linkedin:
John Marcum -
Ports Required for SMTP access from DMZ
We have a Windows 2000 Adv Server on a DMZ interface of a PIX firewall. We are using native Windows SMTP services as a Front End server for Exchange mail. Our Exchange server has a SmartHost entry that sends outbound mail to the server on the DMZ. Our MX record points to the server on the DMZ for inbound traffic.
We originally allowed DNS resolution and SMTP (Port 25) traffic to the server. We've done this numerous times from the Internal interface of the PIX. Yet, there apparently is at least one other port that needs to be opened up because the mail stays in the Queue of the SMTP server on the DMZ. We got around the problem by opening up all outbound ports from that server.
My question is: "Does anyone know what ports are required for an SMTP server to work on a PIX DMZ?"
ThanksShould just be TCP/25 and probably DNS (UDP/53). Probably the easiest way to figure out what other port it's using is to look at the active connections from this going through your PIX.
Let's say the IP address of the mail server is 10.1.1.1. Doing:
sho conn | include 10.1.1.1
will give you all the connections. This will tell you where it's connectig to and on what ports. The output will look something like:
FW1(config)# sho conn | incl 10.1.1.1
UDP out 10.2.2.1:17127 in 10.1.1.1:10655 idle 0:01:23 Bytes 1000
UDP out 10.2.2.1:18733 in 10.1.1.1:10477 idle 0:01:38 Bytes 1000
UDP out 10.3.3.2:18429 in 10.1.1.1:10789 idle 0:01:10 Bytes 1000
The numbers after the colons are the port numbers on the connection. Of course yours will show TCP and port 25 (and something else hopefully), but you get the idea.
Maybe you are looking for
-
Printing Problem with CS 6 extended and Canon Pro 9500
My prints are no longer coming out centered. I have the "center" box checked in the CS6 print dialogue box. The prints are not centered left to right or top to bottom. This seems to be a problem since I upgraded to CS 6 extended and or newest print d
-
How to get IDOC segment occurence
Hi All, I am trying out IDOC to File scenario and facing a problem due to repetition of segments in IDOC. Requirement is to repeat the field in output file base on the segment occurance. i am trying to map the record set of target file structure to
-
LRT214 Accessing Web Services with Port Forwarding & Port Translation
Good afternoon to all, Purchased the LRT214 yesterday afternoon and it was a breeze to configure the internet settings and get back online. But after the initial configuration, I ran into some trouble getting the router to do port translation togethe
-
brand new iPad, synced to iTunes, updated to ios5 was working fine. this morning only original programs will open. please help, I'm a total newbe
-
Itunes reboot computer when trying to import music
I had to redo my os on my computer which is a Dell Dimension 4600. After getting my information back on the system and installing itunes I try to import my music and it reboots my system after a few seconds of importing. There isn't any blue screen o