Ports used by GMS

This article describes the list of ports used by GMS.

Web Server Ports (for traffic from Client Browsers to GMS Web Server - all ports can be customized):

• 80 - HTTP Port (TCP)
• 8443 - HTTPS Port (TCP)

CLI Ports (for traffic from GMS CLI Client to GMS Web Server):

• 5595 - GMSVP CLI Secured Server (TCP)

Syslog Port (Customizable - from managed devices, such as firewalls, to GMS Agents):

• 514 - Syslogs Port (syslogs sent to this port on the server from the devices) (UDP)

SNMP Ports (SNMP Traps sent from managed devices, such as firewalls,  to GMS Agents):

• 161 - SNMP Pooling request (GMS will request SNMP information to managed appliances on this port) (TCP)
• 162 - SNMP Traps (traps sent to this port on the server from devices( (UDP)

Databases (wchichever is used in the setup - these are internal ports, for GMS Servers to communicate with the DB):

• 1433 - SQL Server (TCP)
• 3306 - MySQL (TCP)
• 5029 - InfoBright - Reporting Database (TCP)

Control Ports (Internal ports, used within the module):

• 3002 - Scheduler's Syslog Parser Telnet Port (TCP)
• 8009 - Apache Tomcat connector
• 8005 - JVM Binding

Control Ports (Internal used within the host machine itself):

• 2999 - Control Port Scheduler (TCP)
• 21000 - Control Port Summarizer (TCP)
• 21001 - Control Port VP Scheduler (TCP)
• 21004 - Control Port Syslog Collector (TCP)
• 21005 - Control Port Monitor Manager (TCP)
• 21006 - Control Port Update Manager (TCP)
• 21008 - Control Port SNMP Manager (TCP)

SSH Port (for UMA, Virtual Appliance only - from SSH Client to GMS Server):

• 22 SSH Access port (UMA/VA Only)

Syslog Forwarding Ports (all are internal ports):

• 21003 - Scheduler Heartbeat Forward (Internal) (UDP)
• 21007 - Syslog Forwarding (one server to another) (Syslog Viewer) (UDP)
• 21010, 21011 - Open for internally forwarded syslogs for event correlation (Event Manager) (UDP)
• 21015 - Event Viewer

Zero Touch Ports

• 21021
• 443

Learn more about required ports for Capture Security Center.