Firewall Settings - Entrust nShield 5c Installation Manual
Hide thumbs
Also See for nShield 5c:
- Quick start manual (2 pages) ,
- Hardware and setup manual (28 pages) ,
- Hardware and setup manual (26 pages)
Table of Contents
Advertisement
software installation media
3.2. Firewall settings
When setting up your firewall, you should ensure that the port settings are compatible
with the HSMs and allow access to the system components you are using.
The following table identifies the ports used by the nShield system components. All listed
ports are the default setting. Other ports may be defined during system configuration,
according to the requirements of your organization.
Component
Hardserver
Hardserver
Hardserver
Hardserver in the HSM
Remote Administration
Service
Audit Logging syslog
If you are setting up an RFS or exporting a slot for Remote Operator functionality, you
need to open port 9004. You may restrict the IP addresses to those you expect to use
nShield® 5c Installation Guide
for more about optional components.
Default
Protocol
Port
9000
TCP
9001
TCP
9004
TCP
9004
TCP
9005
TCP
514
UDP
Use
Internal non-privileged connections
from Java applications including
KeySafe
Internal privileged connections from
Java applications including KeySafe
Incoming impath connections from
other hardservers, for example:
* From an HSM to the Remote File
System (RFS).
* From a non-attended HSM to an
attended host machine when using
Remote Operator.
Incoming impath connections from
client machines
Incoming connections from Remote
Administration Clients
If you plan to use the Audit Logging
facility with remote syslog or SIEM
applications, you need to allow
outgoing connections to the
configured UDP port
12 of 77
- Quick Links:
- Table of Contents
Hide quick links:
Advertisement
Table of Contents
Need help?
Do you have a question about the nShield 5c and is the answer not in the manual?
Questions and answers