Dell 6.2 Server User Manual

Open as PDF

of 869

508 | ExternalFirewallConfiguration DellPowerConnectW-SeriesArubaOS6.2 | User Guide

l GRE (protocol 47).

Between a Remote AP (IPSec) and a controller:

l NAT-T (UDP port 4500).

l TFTP (UDP port 69) .

NOTE: TFTP is not needed for normal operation. If the remote AP loses its local image for any reason, it will use TFTP to download

the latest image.

Enabling Network Access

This section describes the network ports that need to be configured on the firewall to manage the Dell network.

For WebUI access between the network administrator’s computer (running a Web browser) and a controller:

l HTTP (TCP ports 80 and 8888) or HTTPS (TCP ports 443 and 4343).

l SSH (TCP port 22 or TELNET (TCP port 23).

Ports Used for Virtual Internet Access (VIA)

The following ports are used with Dell VIA.

l For the reachability/trusted network check use port 443

l For the IPSec connection use port 4500

l To allow ISAKMP use port 500

Configuring Ports to Allow Other Traffic Types

This section describes the network ports that need to be configured on the firewall to allow other types of traffic in

the Dell network. You should only allow traffic as needed from these ports.

l For logging: SYSLOG (UDP port 514) between the controller and syslog servers.

l For software upgrade or retrieving system logs: TFTP (UDP port 69) or FTP (TCP ports 21 and 22) between the

controller and a software distribution server.

l If the controller is a PPTP VPN server, allow PPTP (UDP port 1723) and GRE (protocol 47) to the controller.

l If the controller is an L2TP VPN server, allow NAT-T (UDP port 4500), ISAKMP (UDP port 500) and ESP

(protocol 50) to the controller.

l If a third-party network management system is used, allow SNMP (UDP ports 161 and 162) between the

network management system and all Dell controllers.

l For authentication with a RADIUS server: RADIUS (typically, UDP ports 1812 and 813, or 1645 and 1646)

between the controller and the RADIUS server.

l For authentication with an LDAP server: LDAP (UDP port 389) or LDAPS (UDP port 636) between the

controller and the LDAP server.

l For authentication with a TACACS+ server: TACACS (TCP port 49) between the controller and the

TACACS+ server.

l For packet captures: UDP port 5555 from an AP to an Ethereal packet-capture station; UDP port 5000 from an

AP to a Wildpackets packet-capture station.

l For telnet access: Telnet (TCP port 23) from the network administrator's computer to any AP, if “telnet enable”

is present in the “ap location 0.0.0" section of the controller configuration.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Dell 6.2 Server User Manual