The following table lists the ports that allow communication between the CA TM Server, Policy Proxy Servers, Redistribution Servers, and CA TM Agents.
|
Port Number |
Used By |
Description |
Configurable Using... |
|---|---|---|---|
|
42508 (UDP) |
From the CA TM Server to the CA TM Agent |
Allows the discovery ofall CA TM computers in a subnet. This port is registered with Internet Assigned Numbers Authority. |
Phone Home section of inoc6.icf file or the Phone Home policy from the Threat Management Console |
|
42509 (TCP) |
From CA TM Agent to CA TM Server for all discovery methods except Sweep Poll. |
Allows clients to report back to the CA TM Server during discovery. This port is registered with Internet Assigned Numbers Authority. |
Phone Home section of inoc6.icf file or the Phone Home policy from the Threat Management Console |
|
42509 (UDP) |
From CA TM Agent to CA TM Server for the Sweep Poll discovery method only. |
Allows clients to report back to the CA TM Server during Sweep Poll discovery. This port is registered with Internet Assigned Numbers Authority. |
Phone Home section of inoc6.icf file or the Phone Home policy from the Threat Management Console |
|
42510 (TCP) |
Bi-directional to allow communication between the CA TM Server and the CA TM Agent. |
Allows polices to be pushed to clients by a RPC call. Allows eTrust Agent to report Job status. |
System Setting section of inoc6.icf file Note: If changed after deployment, all currently installed CA TM Agents, including the agent on the CA TM Server, must also be changed at the same time. You must also stop and restart all InoRPC services.
|
|
42511(TCP) |
Redistribution servers |
Distributes content updates to other machines. |
Content Update section of inoc6.icf or the Content Update policy from the Threat Management Console |
|
42611 (TCP) |
Windows Remote Install Utility |
Installs the Threat Agent and Redistribution Server to remote machines. This utility runs on Windows only. |
Options, Target Machine Listening Port menu in Remote Install Utility or the Remote Install Utility installation wizard prompt |
|
6688 (TCP) |
Threat Management Console |
Supports communication (HTTPS) between the browser and the Threat Management Console. |
AdminServer section of inoc6.icf On Windows: ConnectorPort field in Program Files\CA\SharedComponents\ThirdParty\Tomcat\5.5\conf\server.xml On other platforms: $CAAV_LOC/ino/tomcat/conf/server.xml |
|
6689 (TCP) |
Threat Management Console |
Supports communication (HTTP) between the browser and the Threat Management Console. |
AdminServer section of inoc6.icf (for the Start menu) On Windows: ConnectorPort field in Program Files\CA\SharedComponents\ThirdParty\Tomcat\5.5\conf\server.xml On other platforms: $CAAV_LOC/ino/tomcat/conf/server.xml |
|
12168 (TCP) |
Threat Management Console |
Supports the InoWeb service. This port is registered with Internet Assigned Numbers Authority. |
Miscellaneous section of inoc6.icf Note: This port is only used for the Threat Management Server. We recommend that you do not change this port. |
|
5250 (TCP) |
iGateway |
Supports the CA TM Agent GUI. This port is registered with Internet Assigned Numbers Authority. |
This port is not configurable because it is a common component, on which many CA products rely. |
Note: Do not use port numbers 1024 and below.