Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

LMS 4.1 tcp & udp ports

Question: Does LMS 4.1 really need all the tcp & udp ports (listed in the link below) open on the Server 2008 firewall if you are only running one LMS server on the network?

This is 50 more ports than the older LMS used.

Hall of Fame Super Silver

LMS 4.1 tcp & udp ports

A single LMS server would not need the "Server Internal" ports to leave the box. The "Server to Device" and "Device to Server" are only needed if you want to use the associated functions.

That said, most folks I've seen shy away from the Windows Firewall on an LMS box as it is, to borrow a phrase from the late Steve Jobs, "a can of hurt". A better, in my opinion, hardening solution is to sit the server on a network management segment with an access-list or firewall service at the border that is less restrictive than the port- or application-specific Windows firewall.