Home Travels Photoalbum Library
Главная стр.
Путешествия
Библиотека
Фотоальбом
@rich62.ru
Home » Библиотека » Security » CheckPoint » TCP and UDP Ports used by CheckPoint NGX
Вернуться в «Библиотеку» TCP И UDP порты CheckPoint NGX
Сокращения
FWM Enforcement Point, also SecuRemote Server
GUI SmartConsole
ICA Internal CA, mostly primary SmartCenter
SCt SmartCenter
PS Policy Server
SAA Session Authentication Agent
SIC Secure Internal Communication
SR SecuRemote Client
SCl SecureClient
MDG MultiDomain GUI (Provider-1)
MDS MultiDomain Server, Manager or Container (Provider-1)
CMA Customer Management Add-on (Provider-1)
MLM MultiCustomer Log Module (Provider-1)
CLM Customer Log Module (Provider-1)

Краткий перечень TCP и UDP портов, специфичных для CheckPoint NGX:

Port Protocol Name in Service Manager Short description
256 tcp FW1 CheckPoint VPN-1 & FireWall-1 Service
- Get topology information from SCt or CMA to FWM
- Full synchronisation for HA configuration
257 tcp FW1_log CheckPoint VPN-1 & FireWall-1 Logs
- Protocol used for delivering logs from FWM to SCt
- Protocol used for delivering logs from FWM to CMA or CLM
259 tcp FW1_clntauth_telnet CheckPoint VPN-1 & FireWall-1 Client Authentication (Telnet)
- Protocol for performing Client-Authentication at FWM using telnet
259 udp RDP CheckPoint Reliable Datagram Protocol
- Protocol used by SR/SCl for checking the availability of the FWM/PS
260 udp FW1_snmp CheckPoint VPN-1 & FireWall-1 SNMP Agent
- CheckPoint's SNMP, used additionally to 161/udp (snmp)
261 tcp FW1_snauth CheckPoint VPN-1 & FireWall-1 Session Authentication
- Protocol for Session Authentication between FWM and SAA
262 tcp - not predefined - Only internally used by Mail Dequerer (process: mdq)
264 tcp FW1_topo CheckPoint VPN-1 SecuRemote Topology Requests
- Topology Download for SR (build 4100 and higher) and SCl
265 tcp FW1_key CheckPoint VPN-1 Public Key Transfer Protocol
- Public Key download for SR/SCl
900 tcp FW1_clntauth_http CheckPoint VPN-1 & FireWall-1 Client Authentication (HTTP)
- Protocol for performing Client-Authentication at FWM using HTTP
981 tcp - not predefined - CheckPoint VPN-1 Edge remote administration from external IPs using HTTPS
2746 udp VPN1_IPSEC_encapsulation CheckPoint VPN-1 SecuRemote IPSEC Transport Encapsulation Protocol
- Default-Protocol used for UDP encapsulation, CheckPoint proprietary
4433 tcp - not predefined - Default Port used for SmartPortal to have read-access to rulebase, objects, users, etc.
Access with HTTPS using a Web Browser
4532 tcp - not predefined - Only internally used by Session Authentication (in.asessiond)
5004 udp MetaIP-UAT CheckPoint Meta IP UAM Client-Server Communication
8116 udp - not predefined - CheckPoint Cluster Control Protocol
- Protocol for internal communication between High Availability Cluster Members. Used for e.g. report/query state, probing, load balancing
8989 tcp - not predefined - Only internally used by CMA for Messaging (process: cpd)
9281 udp SWTP_Gateway VPN-1 Embedded / SofaWare commands
- Encrypted Protocol for communication between MM and CheckPoint Appliance (e.g. VPN-1 Edge)
9282 udp SWTP_SMS VPN-1 Embedded / SofaWare Management Server (SMS)
- Encrypted Protocol for communication between MM and CheckPoint Appliance (e.g. VPN-1 Edge)
9283 tcp SMS VPN-1 Embedded / SofaWare Management Server (SMS)
18181 tcp FW1_cvp CheckPoint OPSEC Content Vectoring Protocol (CVP)
- Protocol used for communication between FWM and AntiVirus Server
18182 tcp FW1_ufp CheckPoint OPSEC URL Filtering Protocol
- Protocol used for communication between FWM and Server for Content Control (e.g. Web Content)
18183 tcp FW1_sam CheckPoint OPSEC Suspicious Activity Monitor API
- Protocol e.g. for Block Intruder between SCt (or CMA) and FWM
18184 tcp FW1_lea CheckPoint OPSEC Log Export API
- Protocol for exporting logs from SCt
18185 tcp FW1_omi CheckPoint OPSEC Objects Management Interface
- Protocol used by applications having access to the ruleset saved at SCt
18186 tcp FW1_omi-sic CheckPoint OPSEC Objects Management Interface with SIC
- Protocol used by applications having access to the ruleset saved at SCt
18187 tcp FW1_ela CheckPoint OPSEC Event Logging API
- Protocol for applications logging to the Firewall log at SCt
18190 tcp CPMI CheckPoint Management Interface
- Protocol for communication between GUI and SCt
- Protocol for connections from MDG to MDS and CMA
18191 tcp CPD CheckPoint Daemon Protocol
- Download of rulebase from SCt to FWM
- Fetching rulebase, from FWM to SCt or CMA when starting FWM
- Download of rulebase from MDS/CMA to FWM
18192 tcp CPD_amon CheckPoint Internal Application Monitoring
- Protocol for getting System Status, from SCt or MDS/CMA to FWM
18193 tcp FW1_amon CheckPoint OPSEC Application Monitoring
- Protocol for monitoring apps, e.g. from SCt to CVP server
18202 tcp CP_rtm CheckPoint Real Time Monitoring
- Protocol used by SmartView Monitor
18205 tcp CP_reporting CheckPoint Reporting Client Protocol
- Protocol used by Reporting client when connecting to Reporting Server (SCt)
18207 tcp FW1_pslogon CheckPoint Policy Server Logon protocol
- Protocol used for download of Desktop Security from PS to SCl (4.x clients only)
18208 tcp FW1_CPRID CheckPoint Remote Installation Protocol
- Protocol used from MM to FWM when installing Secure Updates.
18209 tcp - not predefined - Protocol used in SIC for communication between FWM and ICA (status, issue, revoke)
18210 tcp FW1_ica_pull CheckPoint Internal CA Pull Certificate Service
- Protocol used by SIC for e.g. FWM pulling CA's from SCt
18211 tcp FW1_ica_push CheckPoint Internal CA Push Certificate Service
- Protocol used by SIC for pushing CA's from SCt or CMA/MDS to FWM
18212 udp FW1_load_agent CheckPoint ConnectControl Load Agent
- Default-Port for Load Agent running on load-balanced Servers (e.g. WWW, FTP)
18221 tcp CP_redundant CheckPoint Redundant Management Protocol
- Protocol used for synchronizing primary and secondary SCt or CMA
- Protocol used for synchronizing primary and secondary MDS
18231 tcp FW1_pslogon_NG CheckPoint NG Policy Server Logon protocol (NG)
- Protocol used for download of Desktop Security from PS to SCl
18232 tcp FW1_sds_logon CheckPoint SecuRemote Distribution Server Protocol
- Protocol for software distribution of CheckPoint components
18233 udp FW1_scv_keep_alive CheckPoint SecureClient Verification KeepAlive Protocol
- Protocol for Secure Configuration Verification on SecureClient
18234 udp tunnel_test CheckPoint tunnel testing application
- Protocol for testing applications through a VPN, used by SR/SCl
18241 udp E2ECP CheckPoint End to End Control Protocol
- Protocol to check SLA's defined in Virtual Links by SmartView Monitor
18264 tcp FW1_ica_services CheckPoint Internal CA Fetch CRL and User Registration Services
- Protocol for Certificate Revocation Lists and registering users when using the Policy Server
- needed when e.g. FWM is starting
18265 tcp FW1_ica_mgmt_tools CheckPoint Internal CA Management Tools
- Protocol for managing the ICA, also used for central administration of certificates on SCt.
- needs to be started separately with the command cpca_client.
18266 tcp CP_seam CheckPoint SEAM Server Protocol
19190 tcp FW1_netso CheckPoint User Authority simple protocol
- Protocol used in UA for connecting from UA Server to Web Plugin when authenticating users here
19191 tcp FW1_uaa CheckPoint OPSEC User Authority API
- Protocol for connections to the UA Server
19194 udp CP_SecureAgent-udp SecureAgent Authentication service
19195 udp CP_SecureAgent-udp SecureAgent Authentication service
60709 tcp - not predefined - Internally used by SecurePlatform for web based system administration (process: cpwmd). It's bound to localhost, so no remote connect is possible.
65524 tcp FW1_sds_logon_NG CheckPoint SecuRemote Distribution Server Protocol
- Protocol for software distribution of CheckPoint components in Next Generation

Дополнительно определенные протоколы:

17 tunnel_test_mapped Tunnel testing for a module performing the tunnel test (this is also UDP)
5 0ESPIPSEC Encapsulating Security Payload Protocol
51 AH IPSEC Authentication Header Protocol
94 FW1_Encapsulation CheckPoint VPN-1 SecuRemote FWZ Encapsulation Protocol
112 VRRP Virtual Router Redundancy Protocol, HA for Nokia's IPSO

О замеченных неточностях прошу сообщить мне.

©rich62.ru,  2001-2011