Novell ZENWORKS NETWORK ACCESS CONTROL 5.0 - 09-22-2008 User Manual page 456

Port
Varies
Ports used for SNMPD:
161 (UDP)
162 (UDP/
TCP)
456 Novell ZENworks Network Access Control Users Guide
Parties Description
ES to endpoint In order to grant access for
quarantined endpoints to
needed services, add entries to
the Accessible services list.
For inline enforcement mode,
enter the IP addresses of the
servers that provide the
services. A port or ports can be
added to limit the access to the
servers from quarantined
endpoints.
For all other deployment modes,
the Fully Qualified Domain
Name (FQDN) of the target
servers should be added to the
list (for example
mycompany.com). If the
specified accessible servers are
not behind an ES, a network
firewall must be used to control
access to only the desired ports.
In DHCP mode, if your DHCP
server has other services
besides DHCP for which you
need to allow access, be sure to
NOT allow port 67.
For example, add the entries
192.168.1.1:1:66 and
192.168.1.1:68:65535 to open
all ports besides 67.
admin user to MS Used for SNMP monitoring of
or ES the server.
NOTE: See
"Enabling SNMP," on page 55
for instructions on enabling
SNMP.
MS to SNMP Traps for SNMP
Comments
Configure in the Novell
ZENworks Network Access
Control user interface:
Home window>>System
configuration>>Accessible
services
Example:
10.0.16.100:53
Separate multiple endpoint
entries with a carriage return
(new line):
10.0.16.100:53
10.0.16.100:80
10.0.16.100:81
10.0.16.100:82
Enter a range of ports as
follows:
10.0.16.100:53:65
Not Configurable
Section 3.5.8,
Not configurable