Cisco Validated Design Guide, Cisco WebEx Social Release 3.3
Port Usage
Downloads: This chapterpdf (PDF - 187.0KB) The complete bookPDF (PDF - 2.35MB) | Feedback

Port Usage

Table Of Contents

Port Usage

Private NIC

Public NIC


Port Usage


This appendix provides information about the ports that need to be opened on the private (internal) and the public (external) NIC for traffic flow to and from the App Server in Cisco WebEx Social DMZ deployments. These ports apply to the following services:

LDAP (Active Directory)

WebEx Meeting Center

WebEx (Cloud) Messenger

This appendix includes these topics:

Private NIC

Public NIC

Private NIC

Table A-1 describes the ports that need to be opened on the private (internal) NIC for Cisco WebEx Social DMZ Deployments.


Note Traffic to the Internet (for example, WebEx Meeting Center, WebEx Connect, and RSS) is sourced on the private (eth0) NIC, not the public (eth1) NIC.


Table A-1 Private NIC 

Source Node
Source Port
Destination Node
Destination Port
Protocol
Notes

App Server

Any

Queue

61616

ActiveMQ

 

App Server

Any

Indexstore

7973

Solr

 

App Server

Any

LDAP

389

LDAP

Either LDAP or LDAPS should be used, but not both simultaneously

App Server

Any

LDAPS

689

LDAPS

Either LDAP or LDAPS should be used, but not both simultaneously

App Server

Any

Cache

11211

Memcached

 

App Server

Any

Analytics

27001

MongoDB

 

App Server

Any

NFS

2049

NFS

 

App Server

Any

RDBMS

1521

Oracle (TNS)

 

App Server

Any

Queue

5672

RabbitMQ

 

App Server

Any

Search Master

8983

Solr

 

App Server

Any

Search Slave

8983

Solr

 

App Server

Any

WebEx Connect

443

WebEx IM (BOSH)

The port does not need to be opened if CORS is enabled

App Server

Any

WebEx Meeting Center

443

WebEx Meetings (XML API over SSL)

 

App Server

Any

Director

514

Rsyslog

If you enable an up-stream rsyslog server, you must open communications from all nodes (including the App Servers) to that up-stream rsyslog server

App Server

Any

Director

8140

puppetmaster

Used when an App Server initiates a puppet run (for example, when running sudo service puppet debug from App Server CLI)

Management laptop/PC

Any

App Server

22

SSH

 

App Server

Any

Notifier

5222

Notifier - Client (App Server) to Server (Notifier)

 

App Server

Any

Notifier

5262

Notifier - Connection Manager

 

App Server

Any

Director

2102

Yum

 

App Server

Any

Director

4505 and 4506

Salt

 

Director

Any

App Server

2812

Monit

 

Director

Any

App Server

8139

Puppet client

Used when the Director initiates a puppet run

App Server

Any

DNS Server

53

DNS

 

Public NIC

Table A-2 describes the ports that need to be opened on the public (external) NIC for Cisco WebEx Social DMZ Deployments.

Table A-2 Public NIC 

Source IP
Source Port
Destination IP
Destination Port
Protocol
Notes

End-user PC, Mobility Client

Any

App Server - Public NIC

80

HTTP

 

End-user PC, Mobility Client

Any

App Server - Public NIC

443

HTTPS

SSL termination on the App Server is not currently supported.