Add to collection(s) Add to saved
  1. No category
Uploaded by mo mo

Complete list of network ports used by Celerra.

advertisement 
Restricted View
Knowledge Base Article: 000427032
Complete list of network ports used by Celerra. (000427032)
Primary Product :
: Celerra Network Server, Celerra, Celerra CFS
Product
Version: 2
Article Type: Break Fix
Audience: Level 30 = Customers
Last Published: Sat Feb 20 19:32:12 GMT 2016
Summary:
:
Complete list of network ports used by Celerra.
:
Default list of ports used by a Data Mover.
Port Protocol Service
Close
port by
Comments
stopping
service?
20
TCP
FTP
Yes
21
TCP
FTP
Yes
69
UDP
TFTP
Yes
111
TCP/UDP sunrpc
137
UDP
138
UDP
139
TCP
161
UDP
SNMP
445
TCP
Microsoft-DS Yes
520
UDP
router (RIP) Yes
NETBIOS
Name
Service
NETBIOS
Datagram
Service
NETBIOS
Session
Service
Yes
FTP data transfer port. Close port by disabling FTP.
FTP control port. FTP listens on this port for incoming requests. Disable
via netd file.
TFTP listens on 69. After request is received a random port is selected
for data transfer. TFTP is not started by default. Requests are not
authenticated.
Opened by portmapper or rpcbind. Necessary service. No
authentication.
Yes
Needed for CIFS. Stop CIFS to close port. No authentication.
NETBIOS is required for pre-Win2K.
Yes
Needed for CIFS. Stop CIFS to close port. No authentication.
NETBIOS is required for pre-Win2K
Yes
Needed for CIFS. Stop CIFS to close port. No authentication.
NETBIOS is required for pre-Win2K
Yes
1234 TCP/UDP mount
No
2049 TCP/UDP NFS
No
4647 UDP
lockd
forward
Yes
4658 TCP
PAX
No
5033 TCP
NBS
No
5080 TCP
HTTP
Yes
Authentication by community string. SNMP also used for some
DM<->CS communication (e.g. server_netstat). Can be closed with
functionality loss.
Needed for CIFS. Authentication per Microsoft standard. Stop CIFS to
close port.
Router Information Protocol.
Mount service required for NFS (v2 and v3). Also used in CS<->DM
communication. Authenticated.
Required for NFS. Also used in CS<->DM communication.
Authenticated.
Used for DM NFS Cluster functionality on the internal Celerra network.
Not a public service.
Portable Archive Interchange (PAX) service is used for tape backup
functionality on the internal Celerra Network between CS and DM. PAX
can be disabled if local tape backup is not implemented.
Network Block Service (NBS) is a proprietary EMC protocol allowing
block access to devices over IP networks. Precursor to iSCSI. CHAP
authentication for NBS connectivity. NS platforms require NBS for CS
access to control volume file systems. Since NBS is only used internally,
the port can be placed behind a firewall. NBS service is required.
HTTP is used as a transport medium for Filemover (ILM policy engine to
DM; HTTP digest authentication) and some CS<->DM communication.
HTTP is required and cannot be disabled. Only needed over the private
Celerra network. Access to HTTP by external agents is disabled by
default.
5085 TCP
RCP
Yes
8887 TCP
RCP
Yes
8888 TCP
RCP
Yes
10000 TCP
NDMP
Yes
12345 TCP
usermapper Yes
31491 UDP
RFA
No
38914 UDP
nfs forward
Yes
49152
TCP/UDP statd
65335
49152
TCP/UDP rquotad
65335
49152
TCP/UDP lockd
65335
49152
TCP/UDP MAC
65335
Used by Celerra Replicator V2 as Destination Control Port.
Used by Celerra Replicator during a target to source resync. This port
must be open between the source and target Data Movers.
Used by Celerra Replicator. This port must be open between Data
Movers on both sides of a replication session.
Network Data Management Protocol. Can be disabled if NDMP tape
backup is not implemented. Authenticated service.
Usermapper provides SID to UID and GID mappings for CIFS clients.
Usermapper is a core Celerra service and cannot be stopped. The port
can be placed behind a firewall. Ensure that all DMs needing
Usermapper have access to the port.
Remote File Access. A core Celerra service used with NFS. This
service is required.
Port is used by DART NFS Cluster product. Not needed by external
clients, only on private Celerra network. Can be put behind firewall.
Yes
NFS file locking status monitor. Works with lockd to provide NFS
recovery handling.
Yes
rquotad provides quota information to NFS clients. Clients use 'quota'
command to query rquotad via RPC. Authenticated.
Yes
NFS file-locking daemon. Handles NFS client lock requests.
No
A proprietary management protocol used in CS<->DM communication.
Service cannot be stopped. Only used on the Celerra private network.
List of default ports used by a Control Station.
Port
22
80
111
161
443
6389
8000
8014
8712
9823
Close Port
by
Protocol Service
Comments
Stopping
Service?
Yes; not
Default shell for CS CLI. Telnet is disabled by default. Authenticated
TCP
SSH
recommended based on local CS users.
All HTTP management traffic to this port is automatically redirected to
TCP
HTTP
No
port 443.
TCP/UDP sunrpc No
Used by portmapper and rpcbind. No authentication. Required service.
Authentication by community string. Can be disabled with SNMP
UDP
SNMP Yes
functionality loss.
Used for HTTPS management traffic by Celerra WebUI. Authentication
TCP
HTTPS No
based on local CS users.
CLARiiON management traffic port used by navicli. Port can be placed
TCP
Navicli No
behind a firewall.
CS to CS communication for replication management. Authentication
by explicit trust relationship (nas_cel); signed HTTP requests. Celerra
TCP
HTTP
Yes
Monitor also uses this port. Monitor authentication through a session
token. Recommendation is to leave this port open.
CLARiiON agent to jserver communication. Used only for internal CS
TCP
Java
No
communication.
NBS access to CS file systems via the Data Movers. Restricted to the
TCP
NBS
No
Celerra private network.
NAS Master Control Daemon (nas_mcd) uses this port to communicate
with remote nas_mcd processes on other CSs. This includes
CS0<->CS1 communication and in RDF environments source CS <->
target CS communication. No authentication. nas_mcd is the master
TCP
nas_mcd No
daemon which starts and monitors the other CS NAS processes.
32768 TCP/UDP statd
39494 TCP/UDP lockd
Yes
Yes
Both MirrorView for Celerra/VNX File and SRDF for Celerra/VNX File
requires this port to be open between Source and Destination sites.
Dynamically allocated. Can be closed but not recommended.
Dynamically allocated. Can be closed but not recommended.
Ports which a Data Mover might contact.
Protocol Port
TCP/UDP 53
Purpose
DNS
TCP/UDP 88
Kerberos Ticket
TCP/UDP 111
TCP/UDP 137
Portmapper
WINS
On what host(s)
All Win2K and above Domain Controllers / DNS servers.
All Kerberos Key Distribution Centers (KDCs); Windows and
UNIX.
All NFS clients, VC servers, NIS servers.
All WINS servers.
NETBIOS Datagram
Service
TCP
139
NETBIOS Session Service
UDP
161
SNMP
TCP/UDP 389
LDAP
UDP
3268
LDAP
TCP
445
Microsoft-DS
TCP/UDP 464
Kerberos Password
TCP/UDP 625
FMP
TCP/UDP 6907
FMP
TCP/UDP Dynamic lockd
TCP/UDP Dynamic statd
TCP/UDP Dynamic NIS
UDP
138
All CIFS clients. Used for notifications and popups.
All Windows NT Domain Controllers.
All hosts configured to receive Data Mover traps.
All Win2K and above DCs or other LDAP servers.
Queries to Win2K and above General Catalog.
All Windows Domain Controllers.
All Win2K and above DCs or other KPASSWD servers.
All Windows MPFS clients.
All UNIX MPFS clients.
All NFS clients.
All NFS clients.
NIS servers.
:
Source: Tech Note P/N 300-004-958: EMC Celerra Network Server on the Enterprise Network (available on Powerlink)
:
Celerra Network Server, Celerra, Celerra CFS
Related documents
assignment 3
assignment 3
1 2
1 2
SI110 Spring AY13 Alpha:___________ Name:________________________________
SI110 Spring AY13 Alpha:___________ Name:________________________________
Networked Car Race Game CSE 704 Spring 2011 Pankaj kumar Yadav
Networked Car Race Game CSE 704 Spring 2011 Pankaj kumar Yadav
EEL 4781 - Homework 3 Problem 1:
EEL 4781 - Homework 3 Problem 1:
Download
advertisement