The Controller to the Controller Access

22

TCP

The Controller cluster Nodes

The Controller cluster Nodes

Secure channel over SSH

443

TCP

The Controller cluster Nodes

The Controller cluster Nodes

Access to portal over HTTPS (UI)

8443

TCP

The Controller cluster Nodes

The Controller cluster Nodes

Secure key exchange portal over HTTPS

The Service Engine to the Controller cluster Node Access

22

TCP

The Service Engine management IPs

The Controller cluster Nodes

Secure channel over SSH

8443

TCP

The Service Engine management IPs

The Controller cluster Nodes

Secure key exchange over HTTPS

123

UDP

The Service Engine management IPs

The Controller cluster Nodes

NTP time synchronization

Administration Access

22

TCP

Admin User IPs

The Controller cluster Nodes

SSH access to the Controller cluster shell/ CLI

443

TCP

Admin User IPs

The Controller cluster Nodes

HTTPS access to the Controller cluster system portal (UI/ SDK)

161

UDP

Admin User IPs

The Controller cluster Nodes

SNMP Poll

5054

TCP

Admin User IPs

The Controller cluster Nodes

(Optional) The Controller CLI through remote shell

The Controller cluster Nodes to External Services

25

TCP

The Controller cluster Nodes

SMTP Servers

SMTP Notifications

49

TCP

The Controller cluster Nodes

TACACS Servers

TACACS+

53

UDP

The Controller cluster Nodes

DNS Servers

DNS

123

UDP

The Controller cluster Nodes

NTP Servers

NTP

389

TCP/UDP

The Controller cluster Nodes

LDAP Servers

LDAP

636

TCP/UDP

The Controller cluster Nodes

LDAP Servers

LDAPs

162

UDP

The Controller cluster Nodes

SNMP Trap Collectors

SNMP Traps

514

UDP

The Controller cluster Nodes

Syslog Servers

Syslog Notifications

Application Connectivity

*

*

Application Clients

The Service Engines

Open up the required TCP/UDP ports for the clients to communicate with the application.

*

*

The Service Engines

Application Servers

Open up the required TCP/UDP ports for the Service Engines to communicate with the backend application servers.