Introduction
A distributed TruView environment always contains a TVC. The TVC is the window to your data and it can be accompanied by a TVF, a TVP or both. Please note that a TVP (TruView Packet) acts a true packet collector, while a TVF (TruView Flow) is equipped with a GUI and is capable of showing NetFlow results. However this GUI is available, it is depreciated and shouldn't be used anymore.
Solution
TVC inbound ports
| destination
|
service
|
role
|
| tcp/443
|
https
|
user portal
|
| tcp/22
|
ssh
|
management cli
|
TVC outbound ports
| destination
|
service
|
role
|
| udp/53
|
dns
|
domain name service
|
| tcp/389
|
ldap
|
remote authentication
|
| tcp/636
|
sldap
|
secure remote authentication
|
| udp/123
|
ntp
|
network time synchronization
|
| tcp/25
|
smtp
|
mailrelay (email external notification)
|
| udp/161
|
snmp
|
polling device health status of exporter
|
TVF inbound ports
| destination
|
service
|
role
|
| tcp/443
|
https
|
user portal (depreciated)
|
| tcp/22
|
ssh
|
management cli
|
| udp/2055,udp/6343*
|
netflow
|
receiving netflow packets from exporter
|
(*) inbound netflow services are depending on the configuration of the exporting device.
TVF outbound ports
| destination
|
service
|
role
|
| udp/53
|
dns
|
domain name service
|
| udp/123
|
ntp
|
network time synchronization
|
| udp/161
|
snmp
|
polling interface utilization of exporter
|
TVP inbound ports
| destination
|
service
|
role
|
| tcp/22
|
ssh
|
management cli
|
TVP outbound ports
| destination
|
service
|
role
|
| udp/53
|
dns
|
domain name service
|
| udp/123
|
ntp
|
network time synchronization
|
Distributed TruView internal communication ports
| destination
|
service
|
role
|
| tcp/443
|
https
|
TVC -> TVF/TVP
|
| tcp/443
|
https
|
TVF/TVP -> TVC
|