Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: What ports are required to be open?

App Control: What ports are required to be open?

Environment

  • App Control Server: All Supported Versions
  • App Control Agent: All Supported Versions

Question

Which ports are required to be open on the firewall for the App Control ?

Answer

For App Control Server and Agent communication:
  • 41002 - Communication port between Agent and Server (Configurable during Server install).
  • 443 - Console access and file transfer port between Agent and Server (See also Update Resource Download Location).
For App Control Server and CDC Connection:
  • 443 to services.bit9.com
  • 443 to reputation.threatintel.carbonblack.io
For SQL Server in a Two-tier Environment (database on a different application server than Console):
  • 1433 - Configurable default port for SQL Server.

Additional Notes

  • SSL Inspection is not supported for communication between the Agents and Server.
  • Further detail about the ports, and communication requirements can be found in the Operating Environment Requirements guide under Server Documentation.
  • The source port opened by the Agent will be determined by the OS ephemeral port configuration and is not determined by the App Control Agent.
  • If using a Proxy for Internet Access this information must be set at the OS Layer as well to ensure Certificate Revocation List Checks are able to be conducted.

Related Content


Labels (1)
Tags (2)
Was this article helpful? Yes No
50% helpful (1/2)
Article Information
Author:
Creation Date:
‎08-27-2020
Views:
4823
Contributors