Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: What ports are required to be open?

App Control: What ports are required to be open?


  • App Control Server: All Supported Versions
  • App Control Agent: All Supported Versions


Which ports are required to be open on the firewall for the App Control ?


For App Control Agent and Server communication:
  • 41002 - Configurable default communication port for the App Control Agent. 
  • 443 - Agent upgrade download port. 
For App Control Server and CDC connection:
  • 443 to services.bit9.com
  • 443 to reputation.threatintel.carbonblack.io

Additional Notes

  • Further detail about the ports, and communication requirements can be found in the Operating Environment Requirements guide under Server Documentation.
  • The source port opened by the Agent will be determined by the OS ephemeral port configuration and is not determined by the App Control Agent.
  • If using a Proxy for Internet Access this information must be set at the OS Layer as well to ensure Certificate Revocation List Checks are able to be conducted.
  • The connections should be whitelisted so SSL Inspection is not affecting the traffic as SSL Inspection is not supported.

Labels (1)
Tags (2)
Was this article helpful? Yes No
50% helpful (1/2)
Article Information
Creation Date: