Knowledge Center Search


 

[ScreenOS] What ports are used for communication between the Management System (NSM), the GUI client, and Juniper Firewall devices?

  [KB6951] Show KB Properties

  [KB6951] Hide KB Properties

Categories:
Knowledge Base ID: KB6951
Last Updated: 16 Jun 2010
Version: 8.0

Summary:
What ports are used for communication between the Management System (NSM), the GUI client, and Juniper Firewall devices?

Problem or Goal:
Environment:
  • Ports used on NSM server
  • Placing firewall in front of NSM server
  • Ports required to open on firewall to allow NSM traffic through

Solution:

The flow of communication and the ports used by NSM,  the GUI client, and typical Juniper Firewall devices are illustrated below. 

Image of example


Port Protocol From To
7801 TCP User Interface (UI) For NSM versions prior to NSM2008.2r1, Starting with NSM 2007.2  from Peer Gui Server in HA environment for DB replication GUI Server
7800 SSP GUI Server - FW/VPN Device (ScreenOS 5.0, 5.1, 5.2, 5.3 & 5.4) Device Server
7802 UDP HA Server (Only in High Availability deployment) HA Server
7803 TCP IDP Devices including IDP Security Modules in ISG1000 and ISG2000 Firewalls Device Server
7804 TCP For all DMI Devices (J-series, EX-Series, IC, SA, etc.) Device Server
7808 TCP For NSM Client in NSM2008.2r1 and higher. Gui Server
8443 TCP For NSM GuiWebProxy which allows Download of NSM Client from NSM Server. Gui Server
15400 NSP FW/VPN Device (ScreenOS 4.0.x) (NO LONGER SUPPORTED after NSM version 2008.1r1) Device Server
11122 NACN FW/VPN Device (ScreenOS 4.0.x) (NO LONGER SUPPORTED after NSM version 2008.1r1) Device Server
69 TFTP FW/VPN Device (ScreenOS 4.0.x) Device Server

Purpose:
Troubleshooting

Related Links:

 

 

ASK THE KB

Question or KB ID:


 


 

 
Copyright© 1999-2012 Juniper Networks, Inc. All rights reserved.