- Preface
- Introduction
- UCS Central Implementation: Approaches and Challenges
- Small Cisco UCS Central Environment
- Medium Cisco UCS Central Environment
- Large Cisco UCS Central Environment
- Sizing and Scaling Considerations
- Domain Groups
- Registration
- Migrating Brownfield to Greenfield
- Organization
- Understanding Policy Differences in Cisco UCS Manager and Cisco UCS Central
- Configuration
- Deploying Global VLANs and VSANs
- Pools
- Authentication
- Firmware Management
- Backup and Import
- High Availability
- General Best Practices
- UCS Central Internal Processes Defined
- UCS Central Communications - Required Ports
- Creating a Testing and Development Environment
- Online Resources
UCS Central
Communications - Required Ports
- Required Ports
- Required Ports for UCSM Domains v2.2(1b) and Earlier
- Required Ports for UCSM Domains v2.2 (2c) and Subsequent Versions
- Required Ports for UCSM
- Required Ports for Active Directory Server
Required Ports
Typically, the IP addresses for all existing Cisco UCS Manager domains exist on a common administrative network. If not, Cisco UCS Central requires that you assure routing access to all subordinate management domains. Ensure that you configure any firewalls, proxies, and anything else required to permit read/write access for the following ports, for continuous communications between Cisco UCS Central and all registered UCS domains.
Required Ports for UCSM Domains v2.2(1b) and Earlier
Open the following ports if using UCSM domains v2.2(1b) and below.
Port | Value |
---|---|
LOCKD_TCPPORT |
32803 – Linux NFS lock. |
MOUNTD_PORT |
892 – Linux NFS mount. |
RQUOTAD_PORT |
875 – Linux remote quota server port (NFS). |
STATD_PORT |
32805 – Linux – Used by NFS file locking service – lock recovery. |
NFS_PORT |
"nfs"(2049) – Linux NFS listening port. |
RPC_PORT |
"sunrpc"(111) – Linux RPCBIND listening port (NFS). |
HTTPS_PORT |
”https”(443) – Communications from Cisco UCS Central to UCS domain(s) and Cisco UCS Central GUI (always required). |
HTTP_PORT |
”http”(80) – Communications from Cisco UCS Central to UCS domain(s). This port is configurable, and is only required for the Flash-based Cisco UCS Central GUI. |
The PRIVATE_PORT (843) |
Required for communication between the Cisco UCS Central Flash-based UI and the Cisco UCS Central VM. Not required for communication between Cisco UCS Central VM and remote UCSM domains. Port 843 is Not Required if using the new HTML-5 UI. |
Port 80 is required for the older Flash-based UI communications. As of Cisco UCS Central release 1.4.1a, it is not possible to turn off port 80 within Cisco UCS Central. However, you can deny port 80 traffic to and from Cisco UCS Central by applying Firewall rules.
Required Ports for UCSM Domains v2.2 (2c) and Subsequent Versions
Open the following ports if using UCSM domains v2.2 (2c) and above.
Port | Value |
---|---|
HTTPS_PORT |
”https”(443) – Communications from Cisco UCS Central to UCS domain(s) and Cisco UCS Manager (always required). |
HTTP_PORT |
”http”(80) – Communications from Cisco UCS Central to UCS domain(s). This port is configurable, and is only required for the Flash-based Cisco UCS Manager. |
The PRIVATE_PORT (843) |
Required for communication between the Cisco UCS Central Flash-based UI and the Cisco UCS Central VM. Not required for communication between Cisco UCS Central VM and remote UCSM domains. Port 843 is Not Required if using the new HTML-5 UI. |
Note | Port 80 is required for the older flash-based UI communications. As of Cisco UCS Central release 1.4.1a, it is not possible to turn off port 80 within Cisco UCS Central. However, you can deny port 80 traffic to and from Cisco UCS Central by applying firewall rules. |
Required Ports for UCSM
Open the following ports so that UCSM works with Cisco UCS Central. Cisco UCS Central accesses the following ports.
Port | Value |
---|---|
HTTPS_PORT |
”https”(443) – Communications from Cisco UCS Central to UCS domain(s) and Cisco UCS Central GUI (always required). |
HTTP_PORT |
”http”(80) – Communications from Cisco UCS Central to UCS domain(s). This port is configurable, and is only required for the Flash-based Cisco UCS Central GUI. |
Port 80 is required for the older Flash-based UI communications. As of Cisco UCS Central release 1.4.1a, it is not possible to turn off port 80 within Cisco UCS Central. However, you can deny port 80 traffic to and from Cisco UCS Central by applying Firewall rules.
Required Ports for Active Directory Server
Open the following ports on the Active Directory server. Cisco UCS Central uses these ports for LDAP Integration with the AD Server.
Port | Value |
---|---|
LDAP Port 389 |
Cisco UCS Central uses for integration and communication with Microsoft Active Directory LDAP |
STARTTLS |
Cisco UCS Central uses for supporting LDAP over SSL/TLS, also uses port 389 |