ILOM Firewall Security Access via Network Ports and Protocols

The following tables identify the default network ports used by ILOM. Most of these network ports are configurable. When configuring firewall security access to ILOM, you should configure these ports with the appropriate ports that are currently being used by the firewall service.

Table 1.  Direct CMM ILOM Access

Ports

Protocols

Applications

80

HTTP over TCP

CMM - ILOM (user configurable port)

443

HTTPS over TCP

CMM - ILOM (user configurable port)

8000 - 8009

HTTP over TCP

CMM - ILOM drill-down (BL0-BL9)

8400 - 8409

HTTPS over TCP

CMM - ILOM drill-down (BL0-BL9)

22

SSH over TCP

SSH - Secure Shell

69

TFTP over UDP

TFTP - Trivial File Transfer Protocol

123

NTP over UDP

NTP - Network Time Protocol

161

SNMP over UDP

SNMP - Simple Network Management Protocol

389

LDAP over UDP/TCP

LDAP - Lightweight Directory Access Protocol (user configurable port)

514

Syslog over UDP

Syslog - (outgoing port)

546

DHCP over UDP

DHCP - Dynamic Host Configuration Protocol (client)

1812

RADIUS over UDP

RADIUS - Remote Authentication Dial In User Service


Note

To manage blades via the CMM ILOM, you need to configure access to all CMM ports listed in Table 1. Additionally, when managing the blades via the CMM ILOM, you need to configure access to all the SP Remote console ports (5120, 5121, and 7578) in Table 2.

Table 2. Direct SP ILOM Access

Ports

Protocols

Applications

80

HTTP over TCP

SP-ILOM user configurable port

443

HTTPS over TCP

SP-ILOM user configurable port

5120

TCP

SP-ILOM Remote Console: CD

5123

TCP

SP-ILOM Remote Console: Diskette

5121

TCP

SP-ILOM Remote Console: Keyboard and Mouse

7578

TCP

SP-ILOM Remote Console: Video

22

SSH over TCP

SSH - Secure Shell

69

TFT over UDP

TFTP - Trivial File Transfer Protocol

123

NTP over UDP

NTP - Network Time Protocol

161

SNMP over UDP

SNMP - Simple Network Management Protocol

162

IPMI over UDP

IPMI - Platform Event Trap (PET) (outgoing port)

389

LDAP over UDP / TCP

LDAP - Lightweight Directory Access Protocol (user configurable port)

514

Syslog over UDP

Syslog - (outgoing port)

546

DHCP over UDP

DHCP - Dynamic Host Configuration Protocol

623

IPMI over UDP

IPMI - Intelligent Platform Management Interface

1812

RADIUS over UDP

RADIUS - Remote Authentication Dial In User Service