Default Exposed Network Services (Oracle ILOM)
This table lists the default network services that re exposed by Oracle ILOM.
For additional information about these services, refer to the Oracle ILOM Security Guide (see Additional Oracle ILOM Resources).
|
|
|
|
SSH
|
TCP
|
22
|
Used by the integrated Secure Shell service to enable
administrative access to Oracle ILOM using a CLI.
|
HTTP (BUI)
|
TCP
|
80
|
Used by the integrated HTTP service to enable administrative
access to Oracle ILOM using a browser interface. While TCP/80 is
typically used for clear-text access, by default Oracle ILOM
automatically redirects incoming requests to the secure version of
this service running on TCP/443.
|
NTP
|
UDP
|
123
|
Used by the integrated Network Time Protocol (NTP) (client only)
service used to synchronize the local system clock to one or more
external time sources.
|
SNMP
|
UDP
|
161
|
Used by the integrated SNMP service to provide a management
interface to monitor the health of Oracle ILOM and to monitor
received trap notifications.
|
HTTPS (BUI)
|
TCP
|
443
|
Used by the integrated HTTPS service to enable administrative
access to Oracle ILOM over an encrypted (SSL/TLS) channel using a
browser interface.
|
IPMI
|
TCP
|
623
|
Used by the integrated Intelligent Platform Management Interface
(IPMI) service to provide a computer interface for various
monitoring and management functions. This service should not be
disabled, because it is used by Oracle Enterprise Manager Ops Center
to collect hardware inventory data, FRU descriptions, hardware
sensor information, and hardware component status
information.
|
Remote KVMS
|
TCP
|
5120
5121
5123
5555
5556
7578
7579
|
Collectively, the remote KVMS ports provide a set of protocols
that provide remote keyboard, video, mouse, and storage capabilities
that can be used with the Oracle Integrated Lights Out
Manager.
|
ServiceTag
|
TCP
|
6481
|
Used by the Oracle ServiceTag service. This is an Oracle discovery
protocol used to identify servers and facilitate service requests.
This service is used by products such as Oracle Enterprise Manager
Ops Center to discover Oracle ILOM software and to integrate with
other Oracle automatic service solutions.
|
WS-Man over HTTPS
|
TCP
|
8888
|
Used by the integrated WS-Man service to provide a
standards-based, web-services interface that is used to manage the
Oracle ILOM over the HTTPS protocol. Disabling this service prevents
Oracle ILOM from being managed using this protocol. This service is
no longer included as of Oracle ILOM version 3.2.
|
WS-Man over HTTP
|
TCP
|
8889
|
This port is used by the integrated WS-Man service to provide a
standards-based, web-services interface that is used to manage the
Oracle ILOM over the HTTP protocol. Disabling this service will
prevent the Oracle ILOM from being managed using this protocol. This
service is no longer included as of Oracle ILOM version 3.2.
|
Single Sign-On
|
TCP
|
11626
|
This port is used by the integrated Single Sign-On feature that
reduces the number of times a user has to enter a user name and
password. Disabling this service prevents launching KVMS without
having to reenter a password.
|
|