09-28-2007 10:08 AM - edited 07-03-2021 02:42 PM
What ports are necessary through a firewall for a server with an agent on a DMZ. I would need CSA to CSAMC and also CSAMC to CSA.
Thanks
09-28-2007 11:07 AM
TCP/UDP 5401 and (optional) 443 as a fallback.
If you are using the anaylsis product, you also need 5402 (at least the last time I checked).
Tom
09-28-2007 11:13 AM
Is this for CSA-CSAMC and CSAMC to CSA? I saw this for the CSA to CSAMC but couldn't find the CSAMC to CSA.
Thanks
Bill
09-28-2007 11:19 AM
It's for both. This explains it pretty well:
Look at "Q. Why is the CSA unable to communicate with the CSA MC?"
http://www.cisco.com/en/US/products/sw/secursw/ps5057/products_qanda_item09186a008049ad72.shtml
They also need to be able to resolve the MC in DNS.
HTH
Tom
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: