Bookshelf Home | Contents | Index | Search | PDF |
Security Guide for Siebel eBusiness Applications > Physical Deployment and Auditing >
Port Numbers
Unless your network requires static ports, use dynamic ports for simplified installation and configuration as well as enhanced security.
If you use Resonate Central Dispatch, the scheduler uses a single port (default is 2320) to handle communications between the Siebel Server and the Web server. Otherwise, TCP ports 49152 (and higher) are used for Siebel components.
Some important planning issues for using port numbers include the following:
- To establish SSL communication for Siebel communications traffic between the Web browser and the Web server, specify an HTTPS port (default is 443) when you install the Siebel Web Server Extension.
- If you are setting up an LDAP/ADS directory server to use with your Siebel applications, use port 635 for secure transmission instead of port 389 for standard transmission.
- To allow users to access to Siebel applications across a firewall, make sure the Web server is accessible externally and that it can communicate with the Siebel Server using port 2320 (default) for TCP traffic.
If you are using Resonate, make sure the Web server can access the Gateway/Central Dispatch (through port 2320). The Central Dispatch Server must reside inside your corporate firewall and use a dynamic port (VIP) to communicate with the Siebel Server.
Once firewall access is available, users can be authenticated using LDAP or any other Siebel-supported method. For more information, see User Authentication Overview.
- Authorized vendors and remote users outside the firewall can use the standard Web server port (default is 80) to access Siebel Web applications. You can configure your firewall so that it will not pass traffic on anything other than port 80. If your Web server needs to support HTTP over SSL, you can open port 443.
NOTE: Siebel Remote deployment options do not rely on Telnet connections to the server. Telnet connections for remote users can be configured in the Siebel environment. However, because of possible security risks, using such connections is not recommended.
- The COM data control and the Java DataBean both communicate using SISNAPI. COM data control supports RSA and Microsoft Crypto, but not SSL. Java DataBean supports RSA, but not Microsoft Crypto or SSL.
- Port numbers for communications between the Siebel Server and the Siebel Database are database-specific. For example, the default TCP port number for communications with an Oracle database is 1521.
- Port numbers for communications between the Siebel Server and the Siebel File System and Database Server are dependent on the file system type. The default TCP port number is 139. The default UDP port numbers are 137 and 138.
For more information, see the Siebel Server Installation Guide for the operating system you are using.
Bookshelf Home | Contents | Index | Search | PDF |
Security Guide for Siebel eBusiness Applications Published: 23 June 2003 |