Data Loss Prevention

 View Only
  • 1.  DLP port issue

    Posted Nov 10, 2012 02:02 AM

    Hi,

     

    Wht are the diffrence ports used by DLP server to commun icate eachother...?



  • 2.  RE: DLP port issue
    Best Answer

    Posted Nov 10, 2012 02:07 AM

    Hi Ambesh, 

    Please find some ports for more details refer Admin guide.

     

    1. Enforce Server (https) -- port: 443 (Windows)

                                           port: 8443 (Linux)
    2. Upgrade Wizard (Enforce) -- 8300
    3. Communications from Enforce to Oracle Database -- 1521
    4. Communications from Enforce to Detection Servers (DLP servers) -- 8100 (Default)
    5. Communications from Endpoint Agents to Endpoint Server -- port: 8000

     

    Regards

    Kishorilal



  • 3.  RE: DLP port issue

    Posted Nov 10, 2012 02:09 AM

    Also refer below links contains of charts of ports

    https://www-secure.symantec.com/connect/forums/default-tcpudp-ports-symantec-dlp-11x-all-components



  • 4.  RE: DLP port issue

    Broadcom Employee
    Posted Nov 10, 2012 02:21 AM

    can you clarify the question again?

    "DLP server to commun icate eachother" do you mean enforcer server?

    or communication between detection server /enforcer server/db?

     

     



  • 5.  RE: DLP port issue

    Trusted Advisor
    Posted Nov 12, 2012 07:58 PM

    Firewall Ports required for Symantec Data Loss Prevention Components                    
    Source    Destination    Protocol    Port    Action    Comment
    Enforce    Network Monitor    TCP    8100    Allow    
    Enforce    Network Web Prevent    TCP    8100    Allow    
    Enforce    Network Mail Prevent    TCP    8100    Allow    
    Enforce    Network Discover    TCP    8100    Allow    
    Enforce    Endpoint Server    TCP    8100    Allow    
    Endpoint Agent     Endpoint server    TCP    8000    Allow    
    Management PC    Enforce    TCP    443    Allow    
    Network Discover     Target Server     TCP    445    Allow    This is for CIFS shares
    Network Discover     Target Server     TCP    2049    Allow    This is for NFS shares
    WebScanner agent    Network Discover    TCP    8090    Allow    This is for webscanner agent
    Management PC    Enforce, any server    TCP    3389    Allow    *RDP useful  for troubleshooting