Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

LMS 4.1 tcp & udp ports

Question: Does LMS 4.1 really need all the tcp & udp ports (listed in the link below) open on the Server 2008 firewall if you are only running one LMS server on the network?

http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_lan_management_solution/4.1/install/guide/prereq.html#wp1075786

This is 50 more ports than the older LMS used.

1 REPLY
Hall of Fame Super Silver

LMS 4.1 tcp & udp ports

A single LMS server would not need the "Server Internal" ports to leave the box. The "Server to Device" and "Device to Server" are only needed if you want to use the associated functions.

That said, most folks I've seen shy away from the Windows Firewall on an LMS box as it is, to borrow a phrase from the late Steve Jobs, "a can of hurt". A better, in my opinion, hardening solution is to sit the server on a network management segment with an access-list or firewall service at the border that is less restrictive than the port- or application-specific Windows firewall.

404
Views
0
Helpful
1
Replies