Environment
- App Control Server: All Supported Versions
- App Control Agent: All Supported Versions
Question
Which ports are required to be open on the firewall for the App Control ?
Answer
For App Control Server and Agent communication:
- 41002 - Communication port between Agent and Server (Configurable during Server install).
- 443 - Console access and file transfer port between Agent and Server (See also Update Resource Download Location).
For App Control Server and CDC Connection:
- 443 to services.bit9.com
- 443 to reputation.threatintel.carbonblack.io
For SQL Server in a Two-tier Environment (database on a different application server than Console):
- 1433 - Configurable default port for SQL Server.
Additional Notes
- SSL Inspection is not supported for communication between the Agents and Server.
- Further detail about the ports, and communication requirements can be found in the Operating Environment Requirements guide under Server Documentation.
- The source port opened by the Agent will be determined by the OS ephemeral port configuration and is not determined by the App Control Agent.
- If using a Proxy for Internet Access this information must be set at the OS Layer as well to ensure Certificate Revocation List Checks are able to be conducted.
Related Content
