The MAG node opens the following listening ports. Please refer to the tables below to configure your firewall rules appropriately.
Static ports
This table describes listening ports that will normally always be open at the specified port number.
Purpose | Port Number | Transport Layer Protocol | Interface | Notes |
---|---|---|---|---|
Alternative HTTP port for nginx |
8080 |
TCP |
access |
|
Alternative HTTPS port for NAF and XCAP |
8443 |
TCP |
access |
|
HTTP port for nginx |
80 |
TCP |
access |
|
HTTPS port for NAF and XCAP |
443 |
TCP |
access |
|
Allows Rhino exports |
22000 |
TCP |
global |
|
Local TCP port for receiving audit syslogs from Rhino and logging to dedicated audit files |
514 |
TCP |
global |
rsyslogd listens on both the IPv4 and IPv6 global addresses |
Listening port for BSF traffic forwarded by nginx |
8001 |
TCP |
internal |
|
Listening port for XCAP traffic forwarded by nginx |
8443 |
TCP |
internal |
|
Localhost port for the Sentinel Volte Mappings Configurer tool |
8080 |
TCP |
localhost |
Used for configuring the HSS provisioning API functionality in REM |
Localhost statistics port for linkerd |
9990 |
TCP |
localhost |
|
NTP - local administration |
123 |
UDP |
localhost |
ntpd listens on both the IPv4 and IPv6 localhost addresses |
PostgreSQL connections from localhost |
5432 |
TCP |
localhost |
PostgreSQL listens on both the IPv4 and IPv6 localhost addresses |
Proxy port for Linkerd |
4140 |
TCP |
localhost |
|
Receive and forward SNMP trap messages |
162 |
UDP |
localhost |
|
SNMP Multiplexing protocol |
199 |
TCP |
localhost |
|
Server port for Tomcat |
8005 |
TCP |
localhost |
|
Allow querying of system-level statistics using SNMP |
161 |
UDP |
management |
|
Inbound and outbound SNMP requests for Rhino |
16100 |
UDP |
management |
|
JMX - used by REM to manage Rhino |
1202 |
TCP |
management |
|
NTP - time synchronisation with external server(s) |
123 |
UDP |
management |
This port is only open to this node’s registered NTP server(s) |
Port for serving version information to SIMPL VM over HTTP |
3000 |
TCP |
management |
|
Rhino Element Manager (REM) |
8443 |
TCP |
management |
|
Rhino management client connections |
1199 |
TCP |
management |
|
SSH connections |
22 |
TCP |
management |
|
SSL - used by REM to manage Rhino |
1203 |
TCP |
management |
|
Stats collection for SIMon |
9100 |
TCP |
management |
Port ranges
This table describes listening ports which may be open at any port number within a range. Unless otherwise specified, a single port in a range will be open.
These port numbers are often in the ephemeral port range of 32768 to 60999.
Purpose | Minimum Port Number | Maximum Port Number | Transport Layer Protocol | Interface | Notes |
---|---|---|---|---|---|
Outbound SNMP traps |
32768 |
60999 |
udp |
global |
|
Rhino statistics gathering |
17400 |
17699 |
tcp |
global |
|
Rhino intra-pool communication |
22020 |
22029 |
tcp |
internal |
|
Rhino statistics gathering |
17401 |
17699 |
tcp |
management |
Rhino node ID dependent ports
This table describes open listening ports whose port numbers depend on the VM’s Rhino node ID. The actual port number will be the base port number from the table plus the value of the Rhino node ID.
Purpose | Base Port Number | Interface | Transport Layer Protocol | Notes |
---|---|---|---|---|
Used by REM to pull Rhino logs |
9373 |
tcp |
global |