The tables below show the default ports used by Administration Server and by client devices. If you want, you can change each of these default port numbers.
Ports used by Kaspersky Security Center Linux Administration Server
Port number |
Name of the process that opens the port |
Protocol |
Port purpose |
Scope |
|---|---|---|---|---|
8060 |
klcsweb |
TCP |
Transmitting published installation packages to client devices |
Publishing installation packages. You can change the default port number in the Web Server section of the Administration Server properties window. This port is optional. For security reasons we recommend using 8061 TCP port. |
8061 |
klcsweb |
TCP (TLS) |
Transmitting published installation packages to client devices |
Publishing installation packages. You can change the default port number in the Web Server section of the Administration Server properties window. |
13000 |
klserver |
TCP (TLS) |
Receiving connections from Network Agents and secondary Administration Servers; also used on secondary Administration Servers for receiving connections from the primary Administration Server (for example, if the secondary Administration Server is in DMZ) |
Managing client devices and secondary Administration Servers. You can change the number of the default port for receiving connections from Network Agents when configuring connection ports during the installation of Kaspersky Security Center Linux; you can change the number of default port for receiving connections from secondary Administration Servers when creating a hierarchy of Administration Servers. |
13000 |
klserver |
UDP |
Receiving information about devices that were turned off from Network Agents |
Managing client devices. You can change the default port number in the Network Agent policy settings. |
13291 |
klserver |
TCP (TLS) |
Using the klakaut utility to automate the Kaspersky Security Center Linux operation |
Working with the klakaut utility. The klakaut utility and a Help system for it are located in the Kaspersky Security Center Linux installation folder. This port is closed by default. If you want to use the klakaut utility to automate the Kaspersky Security Center Linux operation, open the 13291 port by using the klscflag utility. |
13299 |
klserver |
TCP (TLS) |
Receiving connections from Kaspersky Security Center Web Console to the Administration Server; receiving connections to the Administration Server over OpenAPI |
Managing Administration Server by using Kaspersky Security Center Web Console; working with OpenAPI. You can change the default port number in the Administration Server properties window (in the Connection ports subsection of the General section), or when creating a hierarchy of Administration Servers. |
14000 |
klserver |
TCP |
Receiving connections from Network Agents |
Managing client devices. You can change the default port number when configuring connection ports during the installation of Kaspersky Security Center Linux, or when manually connecting a client device to the Administration Server. This port is optional. For security reasons we recommend using 1300 TCP port. |
13111 (only if KSN proxy service is run on the device) |
ksnproxy |
TCP |
Receiving requests from managed devices to KSN proxy server |
KSN proxy server. You can change the default port number in the Administration Server properties window. |
15111 (only if KSN proxy service is run on the device) |
ksnproxy |
UDP |
Receiving requests from managed devices to KSN proxy server |
KSN proxy server. You can change the default port number in the Administration Server properties window. |
17000 |
klactprx
|
TCP (TLS)
|
Receiving connections for application activation from managed devices
|
Activation proxy server for managed devices. You can change the default port number in the Administration Server properties window (in the Additional ports subsection of the General section). |
13292 (only if you manage mobile devices) |
klserver |
TCP (TLS) |
Receiving connections from mobile devices |
Mobile Device Management. You can change the default port number in the Administration Server properties window in the Administration Console or in Kaspersky Security Center Web Console. |
If you install the Administration Server and the database on different devices, you must make available the necessary ports on the device where the database is located (for example, port 3306 for MariaDB). Please refer to the DBMS documentation for the relevant information.
The table below shows the port used by the iOS MDM Server (only if you manage mobile devices).
Port used by iOS MDM Server
Port number |
Name of the process that opens the port |
Protocol |
Port purpose |
Scope |
|---|---|---|---|---|
443 |
kliosmdmservicesrv
|
TCP (TLS) |
Receiving connections from iOS mobile devices |
Mobile Device Management. You can change the default port number when installing iOS MDM Server. |
The table below shows the port used by Kaspersky Security Center Web Console Server. It can be the same device where Administration Server is installed or a different device.
Port used by Kaspersky Security Center Web Console Server
Port number |
Name of the process that opens the port |
Protocol |
Port purpose |
Scope |
|---|---|---|---|---|
8080
|
Node.js: Server-side JavaScript
|
TCP (TLS) |
Receiving connections from browser to Kaspersky Security Center Web Console |
Kaspersky Security Center Web Console. You can change the default port number when installing Kaspersky Security Center Web Console. If you install Kaspersky Security Center Web Console on the Linux ALT operating system, you must specify a port number other than 8080, because port 8080 is used by the operating system. |
The table below shows the port used by managed devices where Network Agent is installed.
Ports used by Network Agent
Port number |
Name of the process that opens the port |
Protocol |
Port purpose |
Scope |
|---|---|---|---|---|
15000 |
klnagent |
UDP |
Management signals from Administration Server or distribution point to Network Agents |
Managing client devices. You can change the default port number in the Network Agent policy settings. |
15000 |
klnagent |
UDP broadcast |
Getting data about other Network Agents within the same broadcasting domain (the data is then sent to the Administration Server) |
Delivering updates and installation packages. |
15001 |
klnagent |
UDP |
Receiving multicast requests from a distribution point (if in use) |
Receiving updates and installation packages from a distribution point. You can change the default port number in the distribution point properties window. |
30522, 30523 (ports on the localhost interface) |
klnagent |
TCP |
Receiving Kaspersky application updates from Administration Server by using the FileTransferBridge component |
Managed devices that receive Kaspersky application updates from Administration Server specified as a database update source. |
Please note that the klnagent process can also request free ports from the dynamic port range of an endpoint operating system. These ports are allocated to the klnagent process automatically by the operating system, so klnagent process can use some ports that are used by another software. If the klnagent process affects that software operations, change the port settings in this software, or change the default dynamic port range in your operating system to exclude the port used by the software affected.
Also take into account that recommendations on the compatibility of Kaspersky Security Center Linux with third-party software are described for reference only and may not be applicable to new versions of third-party software. The described recommendations for configuring ports are based on the experiences of Technical Support and our best practices.
The table below shows the ports used by a managed device with Network Agent installed acting as a distribution point. The listed ports are used by the distribution point devices in addition to the ports used by Network Agents (see table above).
Ports used by Network Agent functioning as distribution point
Port number |
Name of the process that opens the port |
Protocol |
Port purpose |
Scope |
|---|---|---|---|---|
13000 |
klnagent |
TCP (TLS) |
Receiving connections from Network Agents and connection gateways |
Managing client devices, delivering updates and installation packages. You can change the default port number in the distribution point properties. |
13111 (only if KSN proxy service is run on the device)
|
ksnproxy
|
TCP
|
Receiving requests from managed devices to KSN proxy server
|
KSN proxy server. You can change the default port number in the distribution point properties. |
15111 (only if KSN proxy service is run on the device) |
ksnproxy |
UDP |
Receiving requests from managed devices to KSN proxy server |
KSN proxy server. You can change the default port number in the distribution point properties. |
13295 (only if you use the distribution point as a push server) |
klnagent |
TCP (TLS) |
Receiving connections from client devices |
Push server. You can change the default port number in the distribution point properties window in the Administration Console or in Kaspersky Security Center Web Console. |
The table below shows ports used by a domain controller device.
Ports used by a domain controller device
Port number |
Protocol |
Port purpose |
Scope |
|---|---|---|---|
389 |
LDAP over TCP or UDP |
Connecting to a LDAP server |
Domain controller polling |
636 |
LDAP over TLS |
Connecting to a LDAP server |
Domain controller polling |