Cisco Unified Presence, Release 7.x -- Port Usage Information for Cisco Unified Presence Release 7.x
From DocWiki
| Line 1: | Line 1: | ||
| - | ''' | + | '''Main page:''' [[Cisco Unified Presence, Release 7.x]] |
| + | '''Print PDF''': [[Cisco Unified Presence, Release 7.x -- Generating a PDF of Cisco Unified Presence Book Lists]] | ||
| - | |||
This module provides a list of the TCP and UDP ports that Cisco Unified Presence Release 7.x uses for intracluster connections and for communications with external applications or devices. It provides important information for the configuration of firewalls, Access Control Lists (ACLs), and quality of service (QoS) on a network when an IP Communications solution is implemented. | This module provides a list of the TCP and UDP ports that Cisco Unified Presence Release 7.x uses for intracluster connections and for communications with external applications or devices. It provides important information for the configuration of firewalls, Access Control Lists (ACLs), and quality of service (QoS) on a network when an IP Communications solution is implemented. | ||
Latest revision as of 15:54, 13 July 2010
Main page: Cisco Unified Presence, Release 7.x
Print PDF: Cisco Unified Presence, Release 7.x -- Generating a PDF of Cisco Unified Presence Book Lists
This module provides a list of the TCP and UDP ports that Cisco Unified Presence Release 7.x uses for intracluster connections and for communications with external applications or devices. It provides important information for the configuration of firewalls, Access Control Lists (ACLs), and quality of service (QoS) on a network when an IP Communications solution is implemented.
Note: Cisco has not verified all possible configuration scenarios for these ports. If you are having configuration problems using this list, contact Cisco technical support for assistance.
While virtually all protocols are bidirectional, this document gives directionality from the session originator perspective. In some cases, the administrator can manually change the default port numbers, though Cisco does not recommend this as a best practice. Be aware that Cisco Unified Presence opens several ports strictly for internal use.
Ports that are described in this section apply specifically to Cisco Unified Presence Release 7.x. Some ports change from one release to another, and future releases may introduce new ports. Therefore, make sure that you are using the correct version of this document for the version of Cisco Unified Presence that is installed.
Configuration of firewalls, ACLs, or QoS will vary depending on topology, placement of devices and services relative to the placement of network security devices, and which applications and telephony extensions are in use. Also, bear in mind that ACLs vary in format with different devices and versions.
Contents |
Legend: Information Collated in the Port List Table
Table: Port List Legend explains the information presented in the Cisco Unified Presence Ports List :
Table: Table 1 Ports List Legend
| Table Heading | Description |
|---|---|
|
Application / Process |
A Cisco Unified Presence component used for communication |
|
Role |
A client or server application or process |
|
Protocol |
Either a Session-layer protocol used for establishing and ending communications, or an Application-layer protocol used for request and response transactions |
|
Transport Protocol |
A Transport-layer protocol that is connection-oriented (TCP) or connectionless (UDP) |
|
Destination / Listener |
The port used for receiving requests |
|
Source / Sender |
The port used for sending requests |
What To Do Next
Cisco Unified Presence Port List
Table: Cisco Unified Presence Ports shows the ports that Cisco Unified Presence uses for intracluster and intercluster traffic.
Table: Table 2 Cisco Unified Presence Ports
| Cisco Unified Presence Release 7.x | ||||||
| Application / Process | Role | Protocol | Network Protocol | Destination / Listener | Source / Sender | Remarks |
| All Applications | ||||||
| All | Server | TCP / UDP | TCP / UDP | 32768:61000 | Ephemeral |
Generic ephemeral UDP / TCP ports for outgoing server connections. Inherited ports from Cisco Unified Communications Manager. |
| ipvms | Server | UDP | UDP | 24576:32767 |
IP Voice Media Streaming Driver port. Outgoing RTP streaming ports used for voice streaming. Inherited ports from Cisco Unified Communications Manager. | |
| SIP Proxy Requests | ||||||
| SIP Proxy | Server | SIP | UDP | 5060 | Ephemeral |
Default SIP Proxy UDP Listener |
| SIP Proxy | Server | SIP | TCP | 5060 | Ephemeral | Default SIP Proxy TCP Listener |
| SIP Proxy | Server | SIP | TLS | 5061 | Ephemeral | TLS Server Authentication listener port |
| SIP Proxy | Server | SIP | TLS | 5062 | Ephemeral | TLS Mutual Authentication listener port |
| SIP Proxy | Server | SIP | UDP / TCP | 5049 | Ephemeral | Internal port used for Cisco IP Phone Messenger |
| SIP Proxy / IPPM | Server | HTTP | TCP | 8081 | Ephemeral | SIP Proxy port used for Cisco IP Phone Messenger |
| SIP Proxy | Server | HTTP | TCP | 8082 | Default Cisco Unified Presence HTTP Listener. Used for Third-Party Clients to connect | |
| SIP Proxy | Server | HTTPS | TLS / TCP | 8083 | Default Cisco Unified Presence HTTPS Listener. Used for Third-Party Clients to connect | |
| SIP Proxy | Server | TCP | TCP | 16300 | Ephemeral | Used for TimesTen database replication of registration data, ttreg.
|
| Presence Engine Requests | ||||||
| Presence Engine | Server | SIP | TCP | 5070 | Ephemeral |
Default PE UDP Listener |
| Presence Engine | Server | TCP | 50000 | Internal port. Localhost traffic only. Livebus messaging port.
| ||
| Presence Engine | Server | TCP/UDP | TCP/UDP | 16200 | Ephemeral | TimesTen daemon port
|
| Presence Engine | Server | TCP | TCP | 16400 | Ephemeral | Internal port. Localhost traffic only. Used for TimesTen database replication of soft-state data, ttsoft. |
| Cisco Tomcat WebRequests | ||||||
| Cisco Tomcat | Server | HTTPS | TCP | 8080 | Ephemeral | Used for web access |
| Cisco Tomcat | Server | AXL / HTTPS | TLS / TCP | 8443 | Ephemeral | Provides database and serviceability access via SOAP |
| Cisco Tomcat | Server | HTTPS | TLS / TCP | 8443 | Ephemeral | Provides access to Web administration |
| Cisco Tomcat | Server | HTTPS | TLS / TCP | 8443 | Ephemeral | Provides access to User option pages |
| Cisco Tomcat | Server | AXL / HTTPS | TLS / TCP | 8443 | Ephemeral | Provides access to Cisco Unified Personal Communicator via SOAP |
| External Corporate Directory Requests | ||||||
| External Corporate Directory | Client | LDAP | TCP | Ephemeral | 389 | Allows the Directory protocol to integrate with the external Corporate Directory. The LDAP port depends on the Corporate Directory (389 is the default). In case of Netscape Directory, customer can configure different port to accept LDAP traffic. |
| External Corporate Directory | Client | LDAPS | TCP | Ephemeral | 636 | Allows the Directory protocol to integrate with the external Corporate Directory. LDAP port depends on the Corporate Directory (636 is the default). |
| Database Change Notification Requests | ||||||
| Database Change Notification | Client | XML / Proprietary | TCP | Ephemeral | 8001 | DB change notification port |
| Certificate Manager Requests | ||||||
| Certificate Manager | Server | TCP | TCP | 7070 | Ephemeral | Internal port - Localhost traffic only |
| Configuration Requests | ||||||
| Config Agent | Server | TCP | TCP | 8600 | Ephemeral | Config Agent heartbeat port |
| CTI Manager Requests | ||||||
| CTI Manager | Client | QBE | TCP | 2748 | Ephemeral | Cisco Unified Communications Manager port - used by Cisco Unified Presence to connect to CTI Manager. |
| Cisco Licensing Requests | ||||||
| Cisco Licensing | Server | XML | TCP | 5555 | Ephemeral | Internal port - Localhost traffic only |
| IDS Database Requests | ||||||
| IDS DB / DBMON | Server | TCP | TCP | 1500 | Ephemeral | Internal IDS port for DB clients |
| IDS DB / DBMON | TCP | TCP | 1501 | Ephemeral | Internal port - this is an alternate port to bring up a second instance of IDS during upgrade. Localhost traffic only. | |
| IDS DB / DBL RPC | Server | XML | TCP | 1515 | Ephemeral | Internal port - DB replication port |
| IPSec Manager Requests | ||||||
| IPSec Manager | Peer-to-Peer | Proprietary | UDP/TCP | 8500 | 8500 | Internal port - cluster manager port used by the ipsec_mgr daemon for cluster replication of platform data (hosts) certs |
| DRF Master Agent Server Requests | ||||||
| DRF Master Agent | Server | TCP | TCP | 4040 | Ephemeral | DRF Master Agent server port, which accepts connections from Local Agent, GUI, and CLI |
| RISDC Requests | ||||||
| RISDC | Server | TCP | TCP | 2555 | Ephemeral | Connects to other RISDC services in the cluster to provide clusterwide real-time information |
| RISDC | Server | TCP | TCP | 2556 | Ephemeral | Allows RIS client connection to retrieve real-time information |
| RISDC | Client | TCP | TCP | 8889 | 8888 | Internal port. Localhost traffic only. Used by RISDC (System Access) to link to servM via TCP for service status request and reply |
| SNMP Requests | ||||||
| SNMP Agent | Server | SNMP | UDP | 161, 8161 | Ephemeral | Provides services for SNMP-based management applications |
| SNMP Agent | Server | SNMP | UDP | 6162 | Ephemeral | Native SNMP agent that listens for requests forwarded by SNMP master agents |
| SNMP Agent | Server | SNMP | UDP | 6161 | Ephemeral | SNMP Master agent that listens for traps from the native SNMP agent, and forwards to management applications |
| SNMP Agent | Server | TCP | TCP | 7999 | Ephemeral | Used as a socket for the cdp agent to communicate with the cdp binary |
| SNMP Agent | Server | TCP | TCP | 7161 | Ephemeral | Used for communication between the SNMP master agent and subagents |
| SNMP Trap | Client | SNMP | UDP | Ephemeral | 162 | Sends SNMP traps to management applications |
| SNMP Trap | Server | SNMP | UDP | Configurable | 61441 | Internal SNMP trap receiver |
| Racoon Server Requests | ||||||
| Racoon | Server | UDP | 500 | Ephemeral | Enables Internet Security Association and the Key Management Protocol | |
| System Service Requests | ||||||
| System Service | Server | XML | TCP | 8888 & 8889 | Internal port. Localhost traffic only. Used to listen to clients communicating with the Service Manager (servM). | |
| DNS Requests | ||||||
| DNS | Client | UDP | Ephemeral | 53 | Internal port. Localhost traffic only. | |
| SSH/SFTP Requests | ||||||
| SSH / SFTP | Server | SSH / SFTP | TCP | 22 | Ephemeral | Used by many applications to get command line access to the server. Also used between nodes for certificate and other file exchanges (sftp) |
| ICMP Requests | ||||||
| ICMP | Server | ICMP | IP | Not Applicable | Ephemeral | Used to communicate with the Cisco Unified Communications Manager server |
| NTP Requests | ||||||
| NTP | Client | UDP | Ephemeral | 123 | Cisco Unified Communications Manager is the acting NTP server. Used by subscriber nodes to synchronize time with the publisher node.
| |
| Microsoft Exchange Notify Requests | ||||||
| Microsoft Exchange Notify | HTTP (HTTPu) | UDP/IP | CUP server port (default 50020) | Ephemeral | This port is where Microsoft Exchange sends any notifications (using NOTIFY message) to indicate a change to a particular subscription identifier for calendar events. Used to integrate with any Exchange server in the network configuration. The default port is 50020, but users can assign another port if it is not already in use.
| |
| SOAP Services Requests | ||||||
| SOAP Services | Server | TCP | TCP | 5007 | Ephemeral | SOAP monitor port |
| AMC RMI Requests | ||||||
| AMC | Server | TCP | TCP | 1090 | Ephemeral | AMC RMI Object port |
| AMC | Server | TCP | TCP | 1099 | Ephemeral | AMC RMI Registry port
|
