Non-standard Tracker listener ports

From COMCERT Wiki
Jump to: navigation, search

Introduction

All TruView appliances have a firewall enabled for security. This firewall daemon is part of the CentOS 7 operating system. The default listening ports for flow exports that are open on the firewall are udp/2055-2555, udp/6343, tcp/6343 and udp/9995-9996.

When other listener ports are required, the firewall configuration needs modification.

Solution

  • Connect to the applicance's CLI (SSH) and login
  • Assume root priviledges by issuing the following command: 
# sudo su -
  • Verify the firewall's current configuation: 
# firewall-cmd --zone=public --list-ports
  • Add temporary as well as permanent policies to the firewall. In this example, we're adding port 2060 as a listning port: 
# firewall-cmd --zone=public --add-port=2060/udp
# firewall-cmd --zone=public --add-port=2060/udp --permanent
  • Don't forget to add these listerner ports to the legacy TVF user interace as well.
Retrieved from "https://wiki.comcert.com/index.php?title=Non-standard_Tracker_listener_ports&oldid=3034"