Table of Contents
Advertisement
Chapter 3
Installing the Clean Access Manager and Clean Access Server
Table 3-2
Port Usage
Communicating
Device
Devices
Firewall, if any CAM and CAS
CAS and Agent
OL-20326-01
Ports to Open
Purpose
TCP 8995, 8996
Java Management Extensions (JMX) communication between the
CAM and CAS, such as pre-connect and connect messages.
TCP 1099
TCP 443
HTTP over Secure Sockets Layer (SSL) communication between
Agent/CAS/CAM, such as end user machine remediation via the
Agent.
TCP 80 (for version
HTTP communication between Agent/CAS/CAM. Used to
3.6.x and earlier)
download the Agent from the CAM to an end user machine.
UDP 8905, 8906
SWISS, a proprietary CAS-Agent communication protocol used
by the Agent for UDP discovery of the CAS. UDP 8905 is used for
Layer 2 discovery; and 8906 is used for Layer 3 discovery.
For more information, see the "Connecting to the CAS Using the
SWISS Protocol" section in the
Access Server Configuration Guide, Release
HTTP over SSL communication between Agent/CAS/CAM, such
TCP 443
as for user redirection to a web login page.
TCP 80 (for version
HTTP communication between Agent/CAS/CAM. Used to
3.6.x and earlier)
download the Agent from the CAM to an end user machine.
Cisco NAC Appliance Connectivity Across a Firewall
Cisco NAC Appliance - Clean
Cisco NAC Appliance Hardware Installation Guide
4.8(3).
3-35
Hide quick links:
Advertisement
Table of Contents
