Firewall Rules Between the Gateway and Oracle Standalone Hosts
This section provides a table showing the internal firewall rules between the
Gateway and Oracle standalone hosts.
Table 16 Firewall Rules Between the Gateway and Oracle Standalone
Hosts
|
|
|
|
|
ICMP
|
All monitored interfaces
|
Gateway
|
ICMP Type 0 and 8
|
Used to test network connectivity between customer systems and
the Gateway
|
ICMP
|
Gateway
|
All monitored interfaces
|
ICMP Type 0 and 8
|
Used to test network connectivity between the Gateway and
customer systems
|
SNMP
|
Gateway
|
Host
Host ILOM (If Oracle hardware)
|
UDP/161
|
SNMP for ASR telemetry
|
OEM
|
Gateway
|
Host
|
HTTPS/1830-1839
|
OEM agent communication, typically 1830 is used for Oracle
Services
|
ASR
|
Gateway
|
Host
Host ILOM (If Oracle hardware)
|
TCP/6481
|
ASR for discovery and monitoring by service tags
|
SSH/SCP
|
Gateway
|
Host
Host ILOM (If Oracle hardware)
|
TCP/22
|
Monitoring configuration, fault diagnostics, and
patching
|
SNMP
|
Host
Host ILOM (If Oracle hardware)
|
Gateway
|
UDP/162
|
SNMP for monitoring events and/or network monitoring
|
HTTPS (OEM Agent)
|
Host
|
Gateway
|
HTTPS/1159
|
OEM agent communication to the Gateway
|
RCMP+
|
Gateway
|
Host
Host ILOM (If Oracle hardware)
|
UDP/623, TCP/623
|
Management and monitoring using ILOM interface (IPMI)
|
HTTPS
|
Gateway
|
Host
Host ILOM (If Oracle hardware)
|
TCP/443
|
Monitoring configuration and fault diagnostic
collection
|
HTTPS
|
Host
|
Gateway
|
TCP/443
|
Patch Download Service for patching support.
|
HTTPS - ZFS agent
|
Gateway
|
ZFS Controllers
|
TCP/215
|
OEM plug-in communication to ZFS for monitoring
|
ZFS Phone Home
|
ZFS Controllers
|
Gateway
|
TCP/8000
|
Gateway hosting a proxy server
|
HTTP
|
Primary Domain
Host
ZFS Controllers
ZFS ILOM
Host ILOM (If Oracle hardware)
|
Gateway
|
HTTP/8234
|
ASR Manager to communicate with ASR assets
|
|