Chapter 1 Installing OS
2.3.3 Changing the Firewall Rules on ftSys Management Appliance
The list of the ports used by ESMPRO/ServerAgent (described as ESMPRO/SA in the table) is shown below.
Allow access to these ports to set Firewall in your environment.
"Auto" in the table enables OS to allocate the available ports within a certain range. Therefore, this cannot be
fixed. Additionally, "Direction" in the table includes the bi-directional arrows in the top row is at the starting time
of the communication, and the lower shows the communication of return.
Function
Server Monitoring (SNMP)
Manager Report (SNMP)
Manager Report (TCP/IP)
Via the Manager
Express Report Service
HTTPS (Via the Manager)
Express Report Service
Express Report Service
(Internet email)
Express Report Service
(HTTPS)
Adding New Firewall Rules
1.
Add snmp port on ftSys Management Appliance.
# firewall-cmd --permanent --add-rich-rule='rule family="ipv4" port
port="161" protocol="udp" accept'
# firewall-cmd –-reload
2.
Reboot ftSys Management Appliance to enable the rules.
Reboot the guest OS from the Host Client or run the following command on the console.
# shutdown -r now
3.
After rebooting ftSys Management Appliance, run the following command to make sure that the
system is running successfully.
# /opt/ft/sbin/ft-verify
Express5800/R320e-E4, R320e-M4, R320f-E4, R320f-M4 Installation Guide (VMware)
in (Agent)
Auto
Auto
Auto
Auto
Auto
Auto
Auto
Important
Do NOT change or delete the default firewall rules. Only add individual rules as
necessary. To handle the Firewall settings, take full responsibility for your actions.
Note
To enable the firewall rules on ftSys Management Appliance, rebooting ftSys Management
Appliance is required. Rebooting the ESXi host is not required.
2. Procedures after Completion of Installation
Direction
Out (default)
→
161/udp
←
→
162/udp
→
31134/tcp
←
→
31136/tcp
←
→
31138/tcp
←
→
25/tcp
←
→
110/tcp
←
→
443/tcp
←
Note
Port opening
(default)
smtp
pop3
https Port opening
(default)
73