Cisco CSA communications

Unanswered Question
Jun 13th, 2007

I will be using 443 for the access to the MC from the client on a DMZ. However, do I need ports open from the MC to the clients? Which ports would it be?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (4 ratings)
codycornell Wed, 06/13/2007 - 12:57

Source Destination Port Protocol

CSA Agent CSAMC Server 80 TCP

CSA Agent CSAMC Server 443 TCP

CSA Agent CSAMC Server 5401 TCP

CSAMC Server Each CSA Agent 5401 UDP

mnlatif Thu, 06/21/2007 - 06:34

Also it might be a good idea to Not open TCP\443 from the DMZ to the CSA MC. Since TCP\443 is also used to access the login page to the MC and should be secured.

TCP\443 is Only used as alternative to TCP\5401 and as long as 5401 is open, CSA Clients will not used TCP\443 for polling etc




This Discussion