Go to main content

Oracle® Advanced Support Gateway Security Guide

Exit Print View

Updated: March 2024
 
 

Firewall Rules Between the Gateway and Exalytics

This section provides a table showing the internal firewall rules between the Gateway and Oracle Exalytics In-Memory Machine.

Table 11  Firewall Rules Between the Gateway and Exalytics
Application Protocol
Source Interface(s)
Destination Interface(s)
Network Protocol/Port
Purpose
ICMP
All monitored interfaces
Gateway
ICMP Type 0 and 8
Used to test network connectivity between customer systems and the Gateway
ICMP
Gateway
All monitored interfaces
ICMP Type 0 and 8
Used to test network connectivity between the Gateway and customer systems
SNMP
Gateway
Exalytics
Exalytics ILOM
UDP/161
SNMP for ASR telemetry
ASR
Gateway
Exalytics and Exalytics ILOM
TCP/6481
ASR for discovery and monitoring by service tags
OEM
Gateway
Exalytics Domains
DomU
HTTPS/1830-1839
OEM Agent communication, typically 1830 is used for Oracle Services
SSH/SCP
Gateway
Exalytics Domains
DomU
Dom0
ILOM
TCP/22
Monitoring configuration, fault diagnostics, and patching
SNMP
Exalytics CDom and ILOM
Gateway
UDP/162
SNMP for monitoring events and/or network monitoring
HTTPS (OEM Agent)
Exalytics Domains and DomU
Gateway
HTTPS/1159
OEM agent communication to the Gateway
RCMP+
Gateway
Exalytics ILOM
UDP/623, TCP/623
Management and monitoring via ILOM interface (IPMI)
HTTPS
Gateway
Exalytics
Exalytics ILOM
TCP/443
Monitoring configuration and fault diagnostic collection
HTTPS
Exalytics Domains, DomU, and Dom0
Gateway
TCP/443
Patch Download Service for patching support.
HTTP
Exalytics ILOM
Exalytics Domains
Exalytics CDom
Gateway
HTTP/8234
ASR assets to communicate with ASR Manager