Network accesses used

All necessary ports are already configured for the application deployed from the ISO image. Information about network accesses required by application functionality is listed in the following table.

Network accesses required by the application

Functionality	Protocol	Port	Direction	Purpose of the connection
Managing the application using the web interface.	TCP	443	Inbound	Application administrator's computer
Technical Support Mode	TCP	22	Inbound	Application administrator's computer
Interaction of cluster nodes	TCP	9045 by default (can be change during installation)	Inbound and outbound	Other cluster nodes
Inbound SMTP traffic	TCP	25	Inbound	Internal and external SMTP servers
Outbound SMTP traffic	TCP	25 by default (can be changed in the application web interface)	Outbound	Internal and external SMTP servers
DNS requests	UDP, TCP	53	Outbound	DNS server manually specified by the administrator
Connection with proxy server	TCP	8080 by default (can be changed in the application web interface)	Outbound	Proxy server
Application activation	TCP	443	Outbound	Kaspersky servers • activation-v2.kaspersky.com • eu.activation-v2.kaspersky.com • americas.activation-v2.kaspersky.com • apac.activation-v2.kaspersky.com • china.activation-v2.kaspersky.com • activation-v2.geo.kaspersky.com • activate.activation-v2.kaspersky.com
Application database update	TCP	80, 443	Outbound	Kaspersky servers. You can see the list of servers in the Knowledge Base, article 6105.
KSN	TCP	443	Outbound	Kaspersky servers • ds.kaspersky.com • ksn-file-geo.kaspersky-labs.com • ksn-verdict-geo.kaspersky-labs.com • ksn-url-geo.kaspersky-labs.com • ksn-kas-geo.kaspersky-labs.com • ksn-a-stat-geo.kaspersky-labs.com • ksn-info-geo.kaspersky-labs.com • ksn-cinfo-geo.kaspersky-labs.com • dc1.ksn.kaspersky-labs.com • dc1-file.ksn.kaspersky-labs.com • dc1-kas.ksn.kaspersky-labs.com • dc1-st.ksn.kaspersky-labs.com
KPSN	TCP	443	Outbound	KPSN server
Moebius service	TCP	443	Outbound	Kaspersky servers • moebius.kaspersky-labs.com • moebius-new.kaspersky-labs.com
LDAP server connection	TCP	389	Outbound	Active Directory servers
Kerberos authentication in Active Directory	UDP, TCP	88	Outbound	Active Directory servers
NTLM authentication using the single sign-on technology	TCP	445 (can be changed in the application web interface)	Outbound	Active Directory servers
Synchronizing the time on the server	UDP	123	Outbound	NTP servers
KATA protection	TCP	443 by default (can be changed in the application web interface)	Outbound	KATA server
Sending application statistics over SNMP	UDP, TCP	161 by default (can be changed in application configuration files)	Inbound	Monitoring system
Forwarding of SNMP traps	UDP, TCP	162 by default (can be changed in application configuration files)	Outbound	Monitoring system
Publishing application events to a SIEM system	UDP	514 by default (can be changed in application configuration files)	Outbound	External Syslog server
Publishing application events to a SIEM system	TCP	601 by default (can be changed in application configuration files)	Outbound	External Syslog server

Page top