Network accesses used

All necessary ports are already configured for the application deployed from the ISO image. Information about network accesses required by application functionality is listed in the following table.

Network accesses required by the application

Functionality

Protocol

Port

Direction

Purpose of the connection

Managing the application using the web interface.

TCP

443

Inbound

Application administrator's computer

Technical Support Mode

TCP

22

Inbound

Application administrator's computer

Interaction of cluster nodes

TCP

9045 by default (can be change during installation)

Inbound and outbound

Other cluster nodes

Inbound SMTP traffic

TCP

25

Inbound

Internal and external SMTP servers

Outbound SMTP traffic

TCP

25 by default (can be changed in the application web interface)

Outbound

Internal and external SMTP servers

DNS requests

UDP, TCP

53

Outbound

DNS server manually specified by the administrator

Connection with proxy server

TCP

8080 by default (can be changed in the application web interface)

Outbound

Proxy server

Application activation

TCP

443

Outbound

Kaspersky servers

• activation-v2.kaspersky.com

• eu.activation-v2.kaspersky.com

• americas.activation-v2.kaspersky.com

• apac.activation-v2.kaspersky.com

• china.activation-v2.kaspersky.com

• activation-v2.geo.kaspersky.com

• activate.activation-v2.kaspersky.com

Application database update

TCP

80, 443

Outbound

Kaspersky servers.

You can see the list of servers in the Knowledge Base, article 6105.

KSN

TCP

443

Outbound

Kaspersky servers

• ds.kaspersky.com

• ksn-file-geo.kaspersky-labs.com

• ksn-verdict-geo.kaspersky-labs.com

• ksn-url-geo.kaspersky-labs.com

• ksn-kas-geo.kaspersky-labs.com

• ksn-a-stat-geo.kaspersky-labs.com

• ksn-info-geo.kaspersky-labs.com

• ksn-cinfo-geo.kaspersky-labs.com

• dc1.ksn.kaspersky-labs.com

• dc1-file.ksn.kaspersky-labs.com

• dc1-kas.ksn.kaspersky-labs.com

• dc1-st.ksn.kaspersky-labs.com

KPSN

TCP

443

Outbound

KPSN server

Moebius service

TCP

443

Outbound

Kaspersky servers

• moebius.kaspersky-labs.com

• moebius-new.kaspersky-labs.com

LDAP server connection

TCP

389

Outbound

Active Directory servers

Kerberos authentication in Active Directory

UDP, TCP

88

Outbound

Active Directory servers

NTLM authentication using the single sign-on technology

TCP

445 (can be changed in the application web interface)

Outbound

Active Directory servers

Synchronizing the time on the server

UDP

123

Outbound

NTP servers

KATA protection

TCP

443 by default (can be changed in the application web interface)

Outbound

KATA server

Sending application statistics over SNMP

UDP, TCP

161 by default (can be changed in application configuration files)

Inbound

Monitoring system

Forwarding of SNMP traps

UDP, TCP

162 by default (can be changed in application configuration files)

Outbound

Monitoring system

Publishing application events to a SIEM system

UDP

514 by default (can be changed in application configuration files)

Outbound

External Syslog server

Publishing application events to a SIEM system

TCP

601 by default (can be changed in application configuration files)

Outbound

External Syslog server

Page top