Overview
To connect from the local computer (LanGuard for example) to a destination computer, the local computer will Connect From a random high numbered Port (that will be different for each connection) to a Fixed low numbered Port on the destination machine that has a service Listening on that Port (the Port is considered Open for connections).
This article provides information about the Ports used by GFI LanGuard machines for Listening to the connection requests from remote machines and connecting to remote machines for accessing specific services.
Information
Notes:
- The Netstat utility can be used to view current connections and Ports.
- The Firewall may need to be re-configured to allow TCP/IP or UDP connections from the GFI LanGuard machine on the following ports.
- You can change the default port(s), mentioned below, for agent communication.
GFI LanGuard uses the following ports:
-
Listening Ports on the GFI LanGuard machine (For connections from remote machines to the LanGuard server):
Service Description Communication Protocol Port OS Process Apache Server
(LanGuard 12 and later)
Port used for agent management and patch deployment
TCP
1072
Httpd.exe
Apache Server
(LanGuard 11 and earlier)
Port used for agent management and patch deployment
TCP
1070
Httpd.exe
-
Connections established from (random high number Ports) on the GFI LanGuard machine to the different Ports for specific services on remote computers:
Service Description Communication Protocol Port EPMAP
Provides dynamically assigned ports for RPC-based services for DCOM
TCP/UDP
135
NetBIOS
Used for computer discovery and resource sharing
TCP/UDP
137, 139
SNMP
Used for computer discovery. GFI LanGuard supports only SNMPv1 and SNMPv2c. SNMPv3 and SNMP over TLS/DTLS are not supported
UDP
161
SMB
Used for auditing computers, agent management, and patch deployment
TCP
445
SSH
Used for auditing Linux and Mac systems
TCP/UDP
22
Priyanka Bhotika
Comments