Port Tables
  • 2 Minutes to read
  • PDF

Port Tables

  • PDF

Article summary

For a ports diagram, see CTERA Portal Ports Diagram

Inbound Ports

PortProtocolNotes
22TCPSSH. CTERA recommends limiting SSH access to specific IP addresses that may require access to the CTERA application servers, for example to perform scheduled maintenance and support related work.
53UDPDNS resolution server (If portal internal DNS server is registered in DNS)
80TCPHTTP (redirects to port 443)
443TCPHTTPS
995TCPCTTP protocol communications with CTERA Edge Filers and agents. For details about CTTP, see What is the CTTP Transport Protocol
8443TCPCommunications with CTERA Edge Filers for log collection

Outbound Ports

PortProtocolNotes
25TCPDefault SMTP port. This port can be configured on the SMTP server and specified in the portal Web interface
80TCPHTTP
88TCP & UDPIf Kerberos is used
111TCPNFS, only required if NFS version 3 storage is used
123UDPNTP (Network Time Protocol)
389TCP & UDPLDAP/LDAP GC (Global Catalog)
443TCPHTTPS
514UDPDefault Syslog port. This port can be configured on the Syslog server
636TCPLDAP and LDAP GC with TLS (CTERA recommends using LDAPS and LDAPS GC instead of LDAP and LDAP GC)
1344TCPIf using an antivirus server
2049TCPNFS, only required if NFS version 4.x storage is used
3128TCPDefault Proxy server port, only required if a proxy server is defined in the global administration, where a different port can be configured
3268TCP & UDPLDAP/LDAP GC (Global Catalog)
3269TCPLDAPS and LDAPS GC (CTERA recommends using LDAPS and LDAPS GC instead of LDAP and LDAP GC)
5671TCPOnly required when using the Varonis service. This port can be configured in Varonis Data Security Platform
5696TCPOnly required when using the Key Management service to connect to the Key Management Interoperability Protocol (KMIP) server
6514TDPDefault Syslog port over TCP/TLS, can be configured on the Syslog server
9094TCPOnly required when using CTERA Insight

Additional Ports Not Requiring Internet Access

The following ports must be opened between the CTERA Portal servers.

PortProtocolNotes
22, 443TCPSSH, internal messaging between CTERA Portal servers.
2181, 2888, 3888, 4646, 4647, 5044, 5045, 5432, 8081, 8082, 8083, 8088, 8443, 9092, 9093, 9094, 9095, 9600, 12181, 19092, 39092TCPInternal communication between CTERA Portal server micro services.
Port 5432 is used for PostgreSQL access from all cluster members to the main and replication databases.
Ports 5045 and 8443 are required when the Thumbnail service is implemented.
4648, 8300, 8301, 8500, 8600TCP & UDPInternal communication between CTERA Portal server micro services.
18682TCPOnly required when a Preview server is used.
Note

CTERA recommends opening a wide port range, 2000-9999, as additional ports might be added with new CTERA Portal versions and the current port numbers might change.

Warning

CTERA Portal operates behind a firewall, and it is important to leave all other ports closed.


Was this article helpful?