The ShCM node opens the following listening ports. Please refer to the tables below to configure your firewall rules appropriately.
Static ports
This table describes listening ports that will normally always be open at the specified port number.
Purpose | Port Number | Transport Layer Protocol | Interface | Notes |
---|---|---|---|---|
Allows Rhino exports |
22000 |
TCP |
global |
|
Local TCP port for receiving audit syslogs from Rhino and logging to dedicated audit files |
514 |
TCP |
global |
rsyslogd listens on both the IPv4 and IPv6 global addresses |
ShCM service port |
8088 |
TCP |
internal |
|
Localhost statistics port for linkerd |
9990 |
TCP |
localhost |
|
NTP - local administration |
123 |
UDP |
localhost |
ntpd listens on both the IPv4 and IPv6 localhost addresses |
PostgreSQL connections from localhost |
5432 |
TCP |
localhost |
PostgreSQL listens on both the IPv4 and IPv6 localhost addresses |
Proxy port for Linkerd |
4140 |
TCP |
localhost |
|
Receive and forward SNMP trap messages |
162 |
UDP |
localhost |
|
SNMP Multiplexing protocol |
199 |
TCP |
localhost |
|
Allow querying of system-level statistics using SNMP |
161 |
UDP |
management |
|
Inbound and outbound SNMP requests for Rhino |
16100 |
UDP |
management |
|
JMX - used by REM to manage Rhino |
1202 |
TCP |
management |
|
NTP - time synchronisation with external server(s) |
123 |
UDP |
management |
This port is only open to this node’s registered NTP server(s) |
Port for serving version information to SIMPL VM over HTTP |
3000 |
TCP |
management |
|
Rhino management client connections |
1199 |
TCP |
management |
|
SSH connections |
22 |
TCP |
management |
|
SSL - used by REM to manage Rhino |
1203 |
TCP |
management |
|
Stats collection for SIMon |
9100 |
TCP |
management |
Port ranges
This table describes listening ports which may be open at any port number within a range. Unless otherwise specified, a single port in a range will be open.
These port numbers are often in the ephemeral port range of 32768 to 60999.
Purpose | Minimum Port Number | Maximum Port Number | Transport Layer Protocol | Interface | Notes |
---|---|---|---|---|---|
Outbound SNMP traps |
32768 |
60999 |
udp |
global |
|
Rhino statistics gathering |
17400 |
17699 |
tcp |
global |
|
Rhino intra-pool communication |
22020 |
22029 |
tcp |
internal |
|
Rhino statistics gathering |
17401 |
17699 |
tcp |
management |
Rhino node ID dependent ports
This table describes open listening ports whose port numbers depend on the VM’s Rhino node ID. The actual port number will be the base port number from the table plus the value of the Rhino node ID.
Purpose | Base Port Number | Interface | Transport Layer Protocol | Notes |
---|---|---|---|---|
Used by REM to pull Rhino logs |
9373 |
tcp |
global |