HP 800 User Manual page 540

Ports used in NAC 800
Port
Ports used for re-authentication:
22 (TCP)
23 (TCP)
161 (TCP)
1812 (TCP)
Ports used for DHCP and domain controllers:
88 (TCP)
135 159 (TCP)
-
135-159 (UDP)
389 (TCP)
1025 (TCP)
1026 (TCP)
3268 (TCP)
88 (TCP)
135 - 159 (TCP)
135-159 (UDP)
389 (TCP)
1025 (TCP)
1026 (TCP)
3268 (TCP)
Table E-1. Ports in NAC 800 (cont.)
E-4
Parties Description
ES to switch Used when you select the
connection to device
when an endpoint is re-authenticated
by the switch. (SSH)
NAC 800 user interface:
System configuration
>>Quarantining
>>802.1X Quarantine method
>>Add 802.1X device
>>Select any device type
>>Select the SSH Connection method
Switch to ES Used to relay credentials to RADIUS
when you are using the local RADIUS
server.
ES to DC/DHCP DHCP Server and Domain Controller
server behind NAC 800:
In DHCP mode, when your DHCP
server and Domain Controller are
behind NAC 800, you must specify
ports 88, 135 to 159, 389, 1025, 1026,
and 3268 as part of the address. If you
do not specify a DHCP address, users
are blocked. If you specify only the IP
address with no port, endpoints are
not quarantined, even for failed tests.
MS/ES to DC/ DHCP Server and Domain Controller
DHCP server NOT behind NAC 800:
In DHCP mode, if your domain
controller is not situated behind NAC
800, you must configure your router to
allow routes from the quarantine area
to your domain controller on ports 88,
135-159, 389, 1025, 1026, and 3268.
Comments
test
Not configurable
button, and
Not configurable
Configure in the NAC 800 user
interface:
Home window
>>System configuration
>>Accessible services
Configure on the router between
Domain Controller and Quarantine
Area