NCE V100R018C10 Communication Port Matrix 01-C

Network Cloud Engine
V100R018C10
Communication Matrix
Issue 01
Date 2018/10/31
HUAWEI TECHNOLOGIES CO., LTD.

Copyright © Huawei Technologies Co., Ltd. 2018. All rights reserved.
No part of this document may be reproduced or transmitted in any form or by any means without prior written consent of
Huawei Technologies Co., Ltd.
Trademarks and Permissions

and other Huawei trademarks are trademarks of Huawei Technologies Co., Ltd.
All other trademarks and trade names mentioned in this document are the property of their respective holders.
Notice
The purchased products, services and features are stipulated by the contract made between Huawei and the customer. All
part of the products, services and features described in this document may not be within the purchase scope or the usage
scope. Unless otherwise specified in the contract, all statements, information, and recommendations in this document are
provided "AS IS" without warranties, guarantees or representations of any kind, either express or implied.
The information in this document is subject to change without notice. Every effort has been made in the preparation of this
document to ensure accuracy of the contents, but all statements, information, and recommendations in this document do no
constitute a warranty of any kind, express or implied.
Huawei Technologies Co., Ltd.

Huawei Industrial Base
Bantian, Longgang
Address:
Shenzhen 518129
People's Republic of China
Website: http://www.huawei.com
Email: support@huawei.com
ans without prior written consent of
their respective holders.
etween Huawei and the customer. All or

hin the purchase scope or the usage
ommendations in this document are
express or implied.
been made in the preparation of this

ommendations in this document do not
Purpose
This document describes the communication ports of Network Cloud Engine (N
Intended Audience
This document is intended for:
● Network planners
● System engineers
● Field engineers
● Network shift engineers
● Network operators
● Network administrators
Organization
Source Device Name of the source device.
IP address of the source device. This IP address must conform to the product-s
Source IP Address
address naming rules.
Number of the source port or source port number range. For well-known protoco
Source Port common port as the source port. If the value of Source Port is Any, the port num
ranges from 32768 to 65535.
Destination Device Name of the destination device.
IP address of the destination device. This IP address must conform to the produ
Destination IP Address
IP address naming rules.
Number of the destination port or destination port number range. The destinatio
Destination Port provides the listening service. If the value of Destination Port is N/A, the represe
not applicable.
Protocol Protocol (such as TCP, UDP, or SCTP) used at the transport layer.
Port Description Details about the services provided by the destination port.
Listening Port Configurable Whether the destination port can be changed through the GUI or CLI.
Authentication mode of the destination port, for example, authentication using th

Authentication Mode
username and password.
Encryption Mode Encryption mode of the destination port.
Plane to which the destination port belongs, such as the OM plane, control and
Plane
plane, user plane, or shared by all three planes.
Version Version of the destination device.

Special Scenario Special scenario where the destination port is used.
Service Service to which the destination port belongs.
Process Process to which the destination port belongs.
Component Component to which the destination port belongs.
Configuration File and Parameter Place where the destination port is configured.
Remarks Content customized based on service or customer requirements.
Huawei Proprietary and Confidential

Issue 01 (01/07/2020) 5
Copyright © Huawei Technologies Co., Ltd
Change History
Changes between document issues are cumulative. The latest document issue
all the changes in earlier issues.
Issue Date
10/31/2018
01

Issue 01 (01/07/2020) 6
This document describes the communication ports of Network Cloud Engine (NCE).
This document is intended for:

● Network planners
● System engineers
● Field engineers
● Network shift engineers
● Network operators
● Network administrators
Name of the source device.

IP address of the source device. This IP address must conform to the product-specific IP
address naming rules.
Number of the source port or source port number range. For well-known protocols, use a
common port as the source port. If the value of Source Port is Any, the port number
ranges from 32768 to 65535.
Name of the destination device.
IP address of the destination device. This IP address must conform to the product-specific
IP address naming rules.
Number of the destination port or destination port number range. The destination port
provides the listening service. If the value of Destination Port is N/A, the representative is
not applicable.
Protocol (such as TCP, UDP, or SCTP) used at the transport layer.
Details about the services provided by the destination port.
Whether the destination port can be changed through the GUI or CLI.
Authentication mode of the destination port, for example, authentication using the
username and password.
Encryption mode of the destination port.
Plane to which the destination port belongs, such as the OM plane, control and signaling
plane, user plane, or shared by all three planes.
Version of the destination device.

Special scenario where the destination port is used.
Service to which the destination port belongs.
Process to which the destination port belongs.
Component to which the destination port belongs.
Place where the destination port is configured.
Content customized based on service or customer requirements.

Issue 01 (01/07/2020) 7
Changes between document issues are cumulative. The latest document issue contains
all the changes in earlier issues.
Description
This issue is the first official release.

Issue 01 (01/07/2020) 8
Source IP Source Destinatio Destination Destination
Source Device Protocol
Address Port n Device IP Address Port
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
IP address
NCE server
IP address
NE IP NCE server IP
NEs Any port NCE server 7100~7150 TCP
address address
NE IP NCE server IP
NEs N/A NCE server N/A RAW
address address
NE IP NCE server IP
NEs N/A NCE server N/A RAW
address address
NE IP 49152~555 NCE server IP

NEs NCE server 13808 TCP
address 35 address

NEs NCE server 13810 TCP
address 35 address
NCE server 15601~156

NCE server NEs NE IP address 161 UDP
IP address 50

IP address 00

IP address 00
NE IP NCE server IP
NEs Any port NCE server 22 TCP
address address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NE IP NCE server IP
NEs Any port NCE server 27300 UDP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NCE server
NCE server 31099 NEs NE IP address 161 UDP
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address

IP address 99
NE IP NCE server IP
NEs Any port NCE server 31800~31803 UDP
address address
NE IP NCE server IP
address address

IP address 00
NE IP NCE server IP
address address
NCE server
IP address
IP address 70
NCE server
NCE server N/A NEs NE IP address N/A ICMP
IP address
NCE server Specified port

NCE server Any port NEs NE IP address TCP
IP address on the server
NE IP NCE server IP
address address
NE IP NCE server IP Specified port

NEs Any port NCE server TCP
address address on the server
NE IP NCE server IP
NEs 1840 NCE server 1840 UDP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NE IP NCE server IP
address address
NE IP NCE server IP Specified port

NEs Any port NCE server UDP
address address on the server
NCE server Specified port

NCE server Any port NEs NE IP address UDP
IP address on the server
NE IP NCE server IP
address address
NE IP NCE server IP
address address

IP address 00
NCE server
IP address
NCE server
IP address
NCE server
IP address
NE IP NCE server IP
address address
NE IP NCE server IP
NEs Any port NCE server 40000~50000 TCP
address address
NE IP NCE server IP
NEs 1884 NCE server 1884 TCP
address address
NE IP NCE server IP
NEs 9013 NCE server 9013 TCP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address
NE IP NCE server IP
address address

IP address 55
NE IP NCE server IP
address address
NCE server
IP address
NCE server
IP address

IP address 55
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NE IP NCE server IP
address address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
NCE server
IP address
Listening Port Encryptio
Port Description Authentication Mode Version
Configurable (Y/N) n Mode
Port for the SFTP server to
provide secure file transfer NCEV1R18C
Yes User Name/Password SSH
services. Used for collecting NE 00 and later
performance data.
FTP-based port. The NE functions
as the FTP server and the bulk
collector periodically obtains PW NCEV1R18C
No User Name/Password None
performance files from NEs over 00 and later
the FTP protocol through this
port.
FTP-based port. The NE functions
as the FTP server and the bulk
collector periodically obtains PW NCEV1R18C
Not Concerning User Name/Password None
performance files from NEs over 00 and later
the FTP protocol through this
port.
The port is an open port for
UniCollectAgentService, which
provides access to the GRPC data NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS
message function, and the device 10 and later
network element can be reported
through this port.
The protocol used by the
TCDriverService process provides NCEV1R18C
No Preshared key None
the OSPF service for 00 and later
communication to ne.
TCDriverService process provides
None: standard protocol NCEV1R18C
the GRE service for No None
(application layer protocol) 00 and later
The port provides the service for NCEV1R18C

No Digital certificate (two-way) SSL/TLS
communication with NEU prober. 00 and later
The port provides the service for NCEV1R18C

communication with NEU prober. 00 and later
Port that the RTPCollector process SNMPV1/V

of the uTraffic Server uses to send SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
requests to NEs for obtaining Community name, SNMPv3 SNMPV3: 00 and later
performance data encryption
Port that the BulkCollector SNMPV1/V
process uses to send requests to SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
NEs for obtaining performance Community name, SNMPv3 SNMPV3: 00 and later
data. encryption
Port that the SNMPCollector SNMPV1/V
process uses to send requests to SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
NEs for obtaining performance Community name, SNMPv3 SNMPV3: 00 and later
data. encryption
Port used for bulk collection (NEs
NCEV1R18C
upload performance data to the Yes User Name/Password SSH
00 and later
uTraffic through SFTP).
Port used for bulk collection (The
uTraffic obtains performance data NCEV1R18C
No User Name/Password SSH
from NEs that support Y1731 00 and later
through SFTP).
Port used for bulk collection (The
system obtains performance data NCEV1R18C
from NEs that support Y1731 00 and later
through FTP).
Port that the QXCollector process
uses to send requests to NEs for Digital certificate (two- NCEV1R18C
No SSL/TLS
obtaining performance data, ssl way);User Name/Password 00 and later
mode.
Port that the QXCollector process
uses to send requests to NEs for NCEV1R18C
obtaining performance data, 00 and later
normal mode.
Port used for receiving alarms and
events reported through SNMP
traps by the NEs or systems
interworked with
DriverFrameworkService. The SNMPV1/V
default destination port is 27300 SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
and it is configurable. Community name, SNMPv3 SNMPV3: 00 and later
The SNMPv1 or SNMPv2C is encryption
insecure, default it is closed
except CloudSOP interconnect
with the third system. Suggest
using SNMPv3.
Listening port for the
SyslogCollectorService service. It No None
receives syslog logs of NEs.
Listening port for the
NCEV1R18C
SyslogCollectorService service. It No Digital certificate (one-way) SSL/TLS
00 and later
receives syslog logs of NEs.
Transmit port for the DrlService SNMPV1/V
service. This port provides the SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
function of communicating with Community name, SNMPv3 SNMPV3: 00 and later
an NE based on SNMP. encryption
This port functions as the SNMP SNMPV1/V
client to provide the function of SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
communicating with an NE based Community name, SNMPv3 SNMPV3: 00 and later
on SNMP. encryption
Yes
on SNMP. encryption
Yes
on SNMP. encryption
SNMPV1/V
It provides the function of SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
receiving traps over SNMP. Community name, SNMPv3 SNMPV3: 00 and later
encryption
SNMPV1/V
It provides the function of SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
receiving traps over SNMP. Community name, SNMPv3 SNMPV3: 00 and later
encryption
Listening port for the SNMPV1/V
trapdispatcherservice process. It SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
forwards traps transmitted by Community name, SNMPv3 SNMPV3: 00 and later
NEs. encryption
SNMPv1/SNMPv2c: SNMPV1/V
Port for NEs to receive SNMP
Community name, 2c: none; NCEV1R18C
requests. NEs and other processes Not Concerning
SNMPv3;User SNMPV3: 00 and later
send messages to this port.
Name/Password encryption
PCEP session listening port, used
NCEV1R18C
to establish a session with a NE. No Preshared key None
00 and later
NCEV1R18C
netconf service port. Yes User Name/Password SSH
10 and later
default port:161. optional port SNMPv1/SNMPv2c: NCEV1R18C
Yes SNMPV3
range : 1025~65535. Community name, SNMPv3 00 and later
NCEV1R18C
no port Not Concerning None None
00 and later
device will listen on server port,
Digital certificate (two- NCEV1R18C
then controller can connect to Not Concerning SSH
way);User Name/Password 00 and later
device with client port.
provides access to the UDP data NCEV1R18C
Yes None None
through this port.
This port is used by the
OpenEmService process and
provides the SFTP server
service,The range of sftp server NCEV1R18C
port is from 1025 to 65535. It is 00 and later
used to provide data consistency
check and difference discovery in
SSH mode.
TCDriverService process provides
the GRE service for No None
The port is used by the

OpenEMService process, which
provides a service to monitor the NCEV1R18C
TCP connection of a southward 00 and later
device for communication in TLS
mode.
mode.
mode.
The port is open for
NetconfClientService to receive a Digital certificate (two- NCEV1R18C
No SSH
callhome connection to the way);User Name/Password 00 and later
southward device.
Port of BITS NEs. This Port is
NCEV1R18C
used for management of BITS No User Name/Password None
00 and later
NEs by weblct.
Port of BITS NEs. This Port is
User Name/Password;Digital NCEV1R18C
used for management of BITS No HTTPS
certificate (two-way) 00 and later
NEs by weblct.
Port of RPS NEs. This Port is
used for manaement of RPS NEs No HTTPS
by weblct. SNMPv1/SNMPv2c:
This port is on an OLT and is used Community name,
NCEV1R18C
for connecting the OLT to an No SNMPv3;Digital certificate HTTPS
00 and later
ONT. (two-way);User
BGP session listening port, used Name/Password
NCEV1R18C
to establish a session with a BGP No Preshared key None
00 and later
peer.
PCEP session listening port, used NCEV1R18C

No Preshared key None
to establish a session with a PCC. 00 and later
Port of the North American NE
for TL1 protocol.Some NEs of
transport domains that are NCEV1R18C
managed by the data center (DC) 00 and later
rely on this port to back up
data,upgrade software.
Port of the North American NE
for stelnet protocol.Some NEs of
transport domains that are User NCEV1R18C
No SSH
managed by the data center (DC) Name/Password;Preshared key 00 and later
rely on this port to back up
data,upgrade software.
Indicates the management

interface between the NE
Software Management processes
(transproxy and Toolkit) and
transport NEs. This interface is
provided by NEs and is based on
NCEV1R18C
the MML protocol. The NMS No User Name/Password None
00 and later
works as a client to communicate
with NEs. The destination port
can be modified on the NMS. For
example, if the firewall performs
NAT for a port, the NMS can only
connect to the post-NAT port.
NCEV1R18C
NE Netconf listen port. Not Concerning User Name/Password SSH
00 and later
The DCNService process uses a
port to provide a service for
listening to UDP None: standard protocol NCEV1R18C
No None
connections(sFlow) from the (application layer protocol) 10 and later
southbound device to receive
device packets.
The port is an open port for SNMPV1/V
OpenEMService. The service can SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
listen to trap packets reported by Community name, SNMPv3 SNMPV3: 10 and later
the device. encryption
The port is an open port for SNMPv1/SNMPv2c:
OpenEMService, and the service Community name, NCEV1R18C
Yes SNMPV3
can listen to the packets replied by SNMPv3;User 10 and later
the device side through the port. Name/Password
The port used by the
UniCollectAgentService process SNMPV1/V
provides the access to the SNMP SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
data message function. Used to Community name, SNMPv3 SNMPV3: 10 and later
communicate with devices in the encryption
SNMP data acquisition module.
Listening port for the ftpd process. NCEV1R18C

No User Name/Password SSL/TLS
It provides FTP functions. 00 and later
SNMPV1/V
This port is used for sending or
SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
receiving SNMP packets of NE. No
Community name, SNMPv3 SNMPV3: 00 and later
encryption
The port is the secure port
provided by the NE to the NMS.
NCEV1R18C
The SSL/TLS protocol is running No User Name/Password SSL/TLS
00 and later
at the port. The port is enabled by
default.
Telnet protocol port is used for

NCEV1R18C
sending or receiving packets of No User Name/Password None
00 and later
NE.
Port for the STelnet server to NCEV1R18C

provide secure telnet services. 00 and later

provides access to the UDP data NCEV1R18C
Yes None None
through this port.

provides access to the GRPC data NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS
through this port.
Listening port for the MQTT
process. The NE functions as the
MQTT client and actively
NCEV1R18C
establishes a persistent MQTT No Preshared key None
10 and later
connection with the Home
platform. The data is encrypted by
application layer.
Port used by an NE for accessing
services on the Home Platform No HTTPS
way);Preshared key 10 and later
over HTTPS.
HomeFileDownloadService
NCEV1R18C
listening this port for device No Preshared key HTTPS
10 and later
downloading files.
Device send register request to
NCEV1R18C
NCE and continue No User Name/Password None
10 and later
communication.
The port used by the
homegatewayjsonservice process
providing communication No SSL/TLS
between device and server in
(SSL) mode.
Homegatewayjsonservice process
NCEV1R18C
is listening the port to receive the No Digital certificate (two-way) SSL/TLS
10 and later
status of device updating.
Port for transport NEs. This port is
used for NCE to communicate NCEV1R18C
No None None
with NEs, and discovery of 00 and later
equipment.
used for NCE to communicate None: standard protocol NCEV1R18C
No None
with NEs, and discovery of (application layer protocol) 00 and later
equipment.
The port is the secure port
provided by the NE to the NMS
NCEV1R18C
for management. The SSL/TLS No User Name/Password SSL/TLS
00 and later
protocol is running at the port.
The port is enabled by default.
Port for transport GNEs. This port

is used for the NMS server to
communicate with and manage
NEs. The NMS communicates
NCEV1R18C
with NEs. The connected ports on No User Name/Password None
00 and later
the NEs can be modified on the
NMS . For example, if the firewall
performs NAT for a port, the NMS
can connect to the post-NAT port.

used for the NMS server to NCEV1R18C
No None None
communicate with NEs, and 00 and later
discovery of equipment.
For the TL1 NE, port on the NE

side whose ID is 3081. This port
is used for the communication
between the NMS and NEs.The
NMS communicates with NEs. NCEV1R18C
The connected ports on the NEs 00 and later
can be modified on the NMS. For
example, if the firewall performs
NAT for a port, the NMS can
connect to the post-NAT port.
SNMPV1/V
This port is used for sending or SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
receiving SNMP packets of NE. Community name, SNMPv3 SNMPV3: 00 and later
encryption
Port of security NEs. This port is
Digital certificate (one- NCEV1R18C
used for device maintenance and No HTTPS
operation via Web interface.
Port for the STelnet server to
Public key;User NCEV1R18C
provide secure telnet services. No SSH
Name/Password 00 and later
Telnet protocol port which ne

management processes use to
NCEV1R18C
configure and synchronize the No User Name/Password None
00 and later
resources.
Port for the IPDcnDM process.
This is the destination port for
DHCP requests. The IPDcnDM
process listens to this port and None: standard protocol NCEV1R18C
No None
receives the DHCP requests from (application layer protocol) 00 and later
NEs or sends the DHCP responses
to NEs.


NCEV1R18C
00 and later
resources.


NCEV1R18C
00 and later
resources.

User NCEV1R18C
Name/Password;Preshared key 00 and later

NCEV1R18C
00 and later
resources.
NetConf protocol port. This port

is used for the interaction between Public key;User NCEV1R18C
No SSH
the U2000 and NEs. Name/Password 00 and later
NetConf protocol port. This port

is used for the interaction between Public key;User NCEV1R18C
No SSH
the U2000 and NEs. Name/Password 00 and later
Special Componen Configuration File and
Service Process Remarks
Scenario t Parameter
None SFTP SFTP PMS None None
None FTP FTP PMS None None
None FTP FTP PMS None None
/
UniCollect UniCollect opt/oss/NCE/apps/UniCollectAgentSe
NCE-
None AgentServi AgentServi rvice/conf/template/utraffic_telemetry None
Collector
ce ce _persistent_grpc.json
inputConf.params.port
OSPF forms IP datagrams

NCE-T
TCDriverS directly, packaging them
none trdriver control None
ervice using protocol number 89
domain
for the IP Protocol field.
GRE forms IP datagrams

NCE-T
TCDriverS directly, packaging them
none trdriver control None
ervice using protocol number 47
domain
for the IP Protocol field.
SQMProbe sqmprobec NCE-

None collectorSe ollectorser NetworkInsig None Analyzer Node
rvice vice_13808 ht
SQMProbe sqmprobec NCE-
None collectorSe ollectorser NetworkInsig None Analyzer Node
rvice vice_13810 ht
NCE-
RTPCollect RTPCollect
None NetworkInsig None None
orService orService
ht
NCE-
BulkCollec BulkCollec
torService tor_10x
ht
SNMPColl NCE-
SNMPColl
None ectorServic NetworkInsig None None
ector_10x
e ht
NCE-
None vsftpd vsftpd NetworkInsig None None
ht
NCE-
None vsftpd vsftpd NetworkInsig None None
ht
NCE-
None ftp ftp NetworkInsig None None
ht
NCE-
QXCollect QxCollecto
orService r_10x
ht
NCE-
QXCollect QxCollecto
orService r_10x
ht
Log in to the NCE.

Choose System > Driver Life Cycle
Management from the main menu.
DriverFra driverfram
Click Configuration Management in
None meworkSer eworkservi CloudSOP None
the navigation tree.
vice ce
Set Local IP address.
Select a drive type.
Set Local port.
iMAPCom syslogcolle
None CloudSOP None None
mon ctorservice
iMAPCom syslogcolle
mon ctorservice
None DrlService drlservice CloudSOP None None
TopoServic
None toposervice CloudSOP None None
e
EmfGnlDe EmfGnlDe
vDm vDm
EmfGnlDe EmfGnlDe
vDm vDm
TrapReceiv
None iMAPFBB CloudSOP None None
er
TrapReceiv
None iMAPFBB CloudSOP None None
er
iMAPCom trapdispatc
mon herservice
NCE-
None cbb_frame SNMP None None
Common
NCE-T
TCDriverS
None trdriver control None None
ervice
domain
UniCollect
NCE- default port:22, Optional
None netconf AgentServi None
Collector port range:1025~65535.
ce
UniCollect
NCE-
None SNMP AgentServi None None
Collector
ce
UniCollect
NCE-
None Ping AgentServi None None
Collector
ce
NetconfCli NetconfCli
None AC-BP None None
entService entService
/
The UDP protocol has no
UniCollect UniCollect opt/oss/NCE/apps/UniCollectAgentSe
NCE- security authentication and
None AgentServi AgentServi rvice/conf/template/utraffic_telemetry
Collector has a whitelist for the
ce ce _persistent_stream_udp.json
reported device IP.
inputConf.params.port
OpenEmSe OpenEmSe The range of sftp server

None AC-BP None
rvice rvice port is from 1025 to 65535.
NCE-T
TCDriverS
None trdriver control None None
ervice
domain
OpenEMSe OpenEMSe
rvice rvice
OpenEMSe OpenEMSe
rvice rvice
OpenEMSe OpenEMSe
rvice rvice
NetconfCli NetconfCli
entService entService
NCE-FAN
None Use this port for HTTP, or
WebSwing BITS NE management None
3303 for HTTPS.
domain
NCE-FAN
None WebSwing BITS NE management None None
domain
NCE-FAN
none
None WebSwing HTTPS management None
domain
NCE-FAN
none
WebSwing OLT NE management None None
domain
NCE-IP
None BGP BGP control None None
domain
NCE-IP
None PCEP PCEP control None None
domain
TransProxy
None transproxy DC None None
Service
TransProxy
Service
TransProxy
Service
FANSouth
None FAN-South FAN-South None None
Service
/opt/oss/envs/Product-DCNService/
DCNServic DCNServic {time-
None AC-BP None
e e shot}/controller/configuration/sflow.p
roperties
OpenEMSe OpenEMSe The range of server port is

None AC-BP None
rvice rvice 1025~65535.
OpenEMSe OpenEMSe
rvice rvice
/
opt/oss/NCE/apps/UniCollectAgentSe
rvice/conf/agentconf/snmp.xml async-
UniCollect UniCollect
NCE- min-listening-port
None AgentServi AgentServi None
Collector /
ce ce
opt/oss/NCE/apps/UniCollectAgentSe
rvice/conf/agentconf/snmp.xml async-
max-listening-port
The function for

verifying FTP
transfer must be
enabled on the
firewall to ensure
proper FTP
transfer. In
communication
based on plaintext
FTP, the detect ftp
function must be
enabled. In
communication
iMAPCom
based on ftpd CloudSOP None None
mon
ciphertext FTP,
the FTP-BIDIR
function in
addition to the
detect ftp function
must be enabled.
For details about
how to enable the
FTP-BIDIR
function, see the
documents related
to the firewall in
use.
NEBackup
MgrServic DCServer;
e;NESoftM NEUpgrad
None DC None None
grService; e;Enpower
EnpowerSe Dm
rvice
TransProxy
Service
NEBackup
MgrServic DCServer;
e;NESoftM NEUpgrad
None DC None None
grService; e;nelicServ
NELicServ er
ice
NEBackup
MgrServic DCServer;
e;NESoftM NEUpgrad
None DC None None
grService; e;nelicServ
NELicServ er
ice
The UDP protocol has no

NCE- security authentication and
None AgentServi AgentServi None
Collector has a whitelist for the
ce ce
reported device IP.
NCE-
None AgentServi AgentServi None None
Collector
ce ce
MqttService\service\src\main\resource
NCE-FAN This port is provided by the
MqttServic s\etc\conf\apps\mqtt\mqtt\mqttd.prope
None mqttservice management Home platform for home
e rties
domain gateways.
TCP_PORT=1884
NCE-FAN FanOntSBIAgent\deployment\src\mai This port is provided by the

FanOntSBI fanontsbiag
None management n\release\bin\start.sh Home platform for home
Agent ent
domain REVERSE_AGENT_PORT=9013 gateways.
HomeFile homefiledo NCE-FAN
None Download wnloadserv management None None
Service ice domain
HomeGate homegatew NCE-FAN
None wayJsonSe ayjsonservi management None None
rvice ce domain

rvice ce domain

rvice ce domain
NCE-T
EmlPubSer Eml_PubS
None management None None
vice vr
domain
NCE-T
EmlPubSer Eml_PubS
vice vr
domain
NCE-T
NemgrTran Qx;TL1;M
sService ML
domain
NemgrTran
sService;N nemgr_tran
NCE-T
emgrMarin s;nemgr_m
eService;N arine;nesvc
domain
emgrV8tra _v8trans
nsService
NCE-T
EmlPubSer Eml_PubS
vice vr
domain
NCE-T
None NE NE management None None
domain
NemgrSec NCE-IP
None urityServic secvpnmgr management None None
e domain
NemgrSec NCE-IP
None urityServic httpd management None None
e domain
NemgrSec NCE-IP
SecurityM
None urityServic management NULL None
grDm
e domain
NemgrSec NCE-IP
SecurityM
None urityServic management NULL None
grDm
e domain
On SUSE Linux,
the IPDcnDM
process actually
listens on port
NCE-IP
13241, but port GcliServic
IPDcnDM management None None
67 must be e
domain
enabled on the
firewall for the
NE.
NCE-IP
NemgrSwit FrameSW
chService MgrDm
domain
NCE-IP
NemgrSwit FrameSW
chService MgrDm
domain
NCE-IP
NemgrSwit BoxSWMg
chService rDm
domain
NCE-IP
NemgrSwit BoxSWMg
None management NULL None
chService rDm
domain
NCE-IP
NemgrRou RouterMgr
terService Dm
domain
NCE-IP
NemgrRou RouterMgr
terService Dm
domain
NCE-IP
NemgrV8p nemgr_v8p
tnService tn
domain
NCE-IP
NemgrVmf Nemgr_vm
Service f
domain
Destinatio Port
Source Source IP Source Destinatio Destinatio
n IP Protocol Descrip
Device Address Port n Device n Port
Address tion
This port
is opened
for users
to log in
to the
server in
SSH
mode to
perform
maintena
nce
Client IP NCE server
Client Any port NCE server 22 TCP operation
address IP address
s.
This port
is used
for
transferri
ng files
using
SFTP at
the
managem
ent plane.
This port
is a
listening
port of
the
CloudSO
P-UniEP
web
service
(nginx
process).
Client Any port NCE server 31945 TCP This port
address IP address
is used
for the
managem
ent plane
to access
the
CloudSO
P-UniEP
service in
web
mode.
Listening
port for
the httpd
process.
It
provides
Client IP NCE server HTTP
Client Any port NCE server 8080 TCP
address IP address service
proxy
functions
between
the iMAP
client and
NEs.
Listening
port for
the
DesktopS
ervice.
This
service
provides
the
functions
Client Any port NCE server 31039 TCP of
address IP address
distributi
ng and
processin
g
messages
and is
used for
Java
client
access.
Listening
port for
the
EMServic
Client IP NCE server e service.
address IP address It
distribute
s and
processes
events.
Listening
port for
the ftpd
Client IP NCE server process.
address IP address It
provides
FTP
functions.
It
provides
FTP data
transfer
functions.
The port
is
automatic
ally
enabled
when a
Client IP NCE server 16100~1709 user runs
Client Any port NCE server TCP
address IP address 9 the FTP-
based get
or put
command
to transfer
files in
passive
mode.List
ening
port for
the ftpd
process.
Listening
port for
the
MRBServ
Client IP NCE server ice
address IP address service. It
distribute
s and
processes
messages.
Listening
port of
the
Porttrunki
ngService
service
that
provides
Client IP NCE server the proxy
address IP address function.
The client
can
access
NEs by
using the
PortTrunk
ingServic
e.
The
Source
Port is
automatic
ally
enabled
when a
user runs
the FTP-
based get
or put
Client Any port NCE server 20 TCP command
address IP address
to transfer
files in
active
mode.Tra
nsmit
port for
the FTPD
process to
send files
in active
mode.
Applicati
Client IP NCE server on service
address IP address access
port.
Port
provided
by
FanAppN
BIAgent
Client Any port NCE server 30110 TCP for the
address IP address
mobile
app to
connect
to NCE-
FAN.
Port for
pushing
messages
Client Any port NCE server 30112 TCP to the
address IP address
mobile
app over
SSL.
Log in to
the server
through
SSH to
perform
maintena
nce
operation
Client Any port NCE server 22 TCP s.
address IP address
The
managem
ent plane
uses the
SFTP
protocol
for file
transfer.
Listening Port Encryption Special
Authentication Mode Version
Configurable (Y/N) Mode Scenario
NCEV1R18C
No User Name/Password SSH None
00 and later
NCEV1R18C
No User Name/Password SSL/TLS None
00 and later
NCEV1R18C
Yes User Name/Password None None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
No Token SSL/TLS None
00 and later
FTP
transfer
must be
enabled on
the firewall
to ensure
proper FTP
transfer. In
communica
tion based
on
plaintext
FTP, the
detect ftp
function
must be
enabled. In
communica
NCEV1R18C tion based
No User Name/Password SSL/TLS
00 and later on
ciphertext
FTP, the
FTP-
BIDIR
function in
addition to
the detect
ftp
function
must be
enabled.
For details
about how
to enable
the FTP-
BIDIR
function,
see the

No SSL/TLS None
NCEV1R18C
00 and later
NCEV1R18C
No User Name/Password None None
00 and later

No SSL/TLS None
This port is
a unified
access port
for
application
NCEV1R18C
No User Name/Password HTTPS services, It
00 and later
needs to
communica
te with the
external
network.
NCEV1R18C
No User Name/Password HTTPS None
10 and later
NCEV1R18C
10 and later
NCEV1R18C
No Public key;User Name/Password SSH None
00 and later
Service Process Component Configuration File and Parameter Remarks
CloudSOP-
SSH sshd None None
UniEP
CloudSOP-
MCERService mcer None None
UniEP
/opt/oss/apps/ApacheService/conf/extra/httpd-
iMAPCommon apache CloudSOP None
vhost.conf/Listen
iMAPCommon desktopservice CloudSOP None None
iMAPCommon emservice CloudSOP None None

iMAPCommon ftpd CloudSOP None None
FtpManagerService ftpd CloudSOP None None

iMAPCommon mrbservice CloudSOP None None
porttrunkingser
iMAPCommon CloudSOP None None
vice
iMAPCommon ftpd CloudSOP None None

Configuration item processes/er/protocols/ER
in <Installation directory>/
{tenant}/apps/ERService/pub/app_define.json
ERService er CloudSOP Configuration item processes/er-{0}-{0}/ER PaaS Port
in <Installation directory>/
{tenant}/apps/ERService/etc/sysconf/ERServi
ce-{version}.json
NCE-FAN
FanAppNBIAg
FanAppNBIAgent management None None
ent
domain
NCE-FAN
LHNodeJSSer
LHNodeJSService management None None
vice
domain
SSH sshd NCE-Engineer None None

Destinatio Port
Source Source IP Source Destination Destinatio
Device Address Port Device n Port
Address tion
Port for
SFTP
service,
OSS IP NCE server NCE
OSS Any port NCE server 22 TCP
address IP address server
acts as a
SFTP
server.
The
default
SFTP
service
port of
NCE server OSS IP OSS
NCE server Any port OSS 22 TCP
IP address address side,
NCE
server
acts as a
SFTP
client.
Default
FTP
service
port on
the OSS
side. The
performa
nce text
NBI
NCE server OSS IP process
IP address address pushes
the
exported
performa
nce and
inventory
files to
the OSS
through
FTP.
The ftp
service
port used
for NCE
server
when it
acts as a
ftp server
OSS IP NCE server
OSS Any port NCE server 21 TCP and OSS
address IP address
may
PULL
exported
text files
from it,it
is not
used by
advice.
Default
FTP
service
port on
the OSS
side. The
performa
nce text
NBI
NCE server OSS IP process
IP address address pushes
the
exported
performa
nce and
inventory
files to
the OSS
through
FTP.
The ftp
service
port used
for NCE
server
when it
acts as a
ftp server
OSS IP NCE server
OSS Any port NCE server 20 TCP and OSS
address IP address
may
PULL
exported
text files
from it.
It is not
used by
advice.
OSS IP NCE server

OSS Any port NCE server 19094 TCP kafka nbi
address IP address
The
rest_agen
t process
notifies
the port
to
provide
notificati
on
connecti
ons and
reporting
functions
OSS IP NCE server
OSS Any port NCE server 30105 TCP . The
address IP address
client
establish
es a WSS
or WS
connecti
on to the
rest_agen
t through
the port
and gets
the
notificati
on.
Port for
the
Notify_S
ervice
process
in SSL
mode.
The
Notify_S
ervice
process,
an
ACE/TA
O open-
OSS IP NCE server
OSS Any port NCE server 22002 TCP source
address IP address
notificati
on
service
of the
CORBA
NBI, is
used to
forward
events to
the OSS
through
the
CORBA
NBI.
Port for
the
Naming_
Service
process
in SSL
mode.
The
Naming_
Service
process,
an
ACE/TA
OSS IP NCE server
OSS Any port NCE server 22001 TCP O-based
address IP address
open-
source
naming
service
process
of the
CORBA
NBI, is
used to
register
CORBA
service
objects.
Port for
the
Agent_C
ORBA
process
in SSL
mode.
This port
is used
OSS IP NCE server for the
address IP address NMS to
listen to
CORBA
requests
from the
OSS
through
the
CORBA
NBI.
Alarm
NBI
provided
OSS IP NCE server
OSS Any port NCE server 31232 TCP for the
address IP address
third-
party
OSS.
Port used
for the
third
party
system to
connect
to the
northbou
nd load
balance
service.
The
northbou
nd load
balance
Third-party
Third-party NCE server service
server IP Any port NCE server 26335 TCP
server IP address forwards
address
https
request
to API
Manage
ment
service
after it
receives
https
request
from the
third
party
applicati
on.
Port used
by the
northbou
nd
SNMP
interface
OSS IP NCE server to
OSS Any port NCE server 9812 UDP
address IP address receive
GET and
SET
request
data
from the
OSS.
Port used
by the
northbou
nd
security
interface
(that
complies
with the
TMF615
protocol
standards
) to
receive
OSS
requests.
The port
OSS IP NCE server supports
address IP address the
common
and SSL
communi
cation
modes.
The
configura
tion file
related to
the port
determin
es the
use of
the SSL
communi
cation
mode.
Port used
for
receiving
SOAP
messages
from the
OSS IP NCE server XMLAg
address IP address ent
process
and
forwardi
ng them
to the
OSS.
Port used
by the
CloudSO
P server
Specified
NCE server OSS IP to report
NCE server 6666 OSS port on the UDP
IP address address alarm
server
data to
the NMS
over
SNMP.
Port
30087 is
open by
the
manage
ment
plane
OSS IP NCE server
OSS 31077 NCE server 30087 UDP and is
address IP address
used to
send
alerts to
the
product
alert
service.
Port used
by the
NM to
synchron
OSS IP NCE server ize
address IP address performa
nce
instances
to the
NCE.
Port that
the OSS
uses to
downloa
d
OSS IP NCE server performa
address IP address nce files
from the
uTraffic
server
through
SFTP.
Port that
the
uTraffic
server
uses to
NCE server OSS IP upload
IP address address performa
nce files
to the
OSS
through
SFTP.
SFTP file
transfer
port. The
uTraffic
collector
is backed
up to
another
SFTP
Server
Third-party
NCE server through
NCE server Any port OSS server IP 22 TCP
IP address this port,
address
or the
uTraffic
collector
is
restored
from the
backup
server
through
this port.
Port used
for
receiving
SOAP
messages
from the
OSS IP NCE server XMLAg
address IP address ent
process
and
forwardi
ng them
to the
OSS.
Port used
to send
Third-party Specified
NCE server Third-party Syslogs.
NCE server Any port server IP port on the UDP
IP address server User
address server
configura
tion.
Port used
to send
Third-party Specified
NCE server Third-party Syslogs.
NCE server Any port server IP port on the TCP
IP address server User
address server
configura
tion.
Third-party Specified Port used
NCE server Third-party
NCE server Any port server IP port on the TCP to upload
IP address server
address server file.
Port used
by third-
party
devices
to
receive
alarms
Third-party Specified and
NCE server Any port server IP port on the TCP performa
IP address server
address server nce data
reported
by the
Agile
Controlle
r.User
configura
tion.
The port
used by
the
websock
et
channel
Third-party to
Third-party NCE server
server IP Any port NCE server 18010 TCP receive
server IP address
address alarms
data
reported
by the
third-
party
devices.
Port used
for the
third
party
system to
connect
to the
northbou
nd load
balance
service.
The
northbou
nd load
balance
Third-party
Third-party NCE server service
server IP address forwards
address
HTTPS
request
to API
Manage
ment
service
after it
receives
https
request
from the
third
party
applicati
on.
Port for
the
xml_age
nt
process
in
HTTP(S)
mode.
OSS IP NCE server
OSS Any port NCE server 9997 TCP This port
address IP address
is used
for the
NMS to
listen to
HTTP(S)
requests
from the
OSS.
Port used
to
Third-party Specified communi
NCE server Any port server IP port on the TCP cate with
IP address server
address server a third-
party
system.
Port for
the
BmsPon
EmsTL1
process.
This port
is used to
OSS IP NCE server provide
address IP address PON
services
for
access
NEs
through
the TL1
NBI.
Port for
the
BmsPon
AlarmTL
1
process.
This port
is used to
OSS IP NCE server provide
address IP address PON
Alarm
services
for
access
NEs
through
the TL1
NBI.
Port for
the cltsi
process.
This port
interconn
ects with
OSS IP NCE server NBIs and
address IP address is used to
conduct
narrowba
nd line
tests on
access
NEs.
Port for
the
StdCltsi
Dm
process.
This port
interconn
OSS IP NCE server ects with
StdCltsi
NBI and
is used to
conduct
line tests
on access
NEs.
Port for
the
TL1NBi
Dm
process.
This port
interconn
ects with
the TL1
OSS IP NCE server
OSS Any port NCE server 9819 TCP NBI and
address IP address
is used to
provision
services
for
access
NEs
through
the TL1
NBI.
Port for
the
agt_cst_x
ml
process.
This port
interconn
ects with
the XML
NBI(non
OSS IP NCE server MTOSI)
address IP address and is
used to
provision
services
for
access
NEs
through
the XML
NBI(non
MTOSI).
Port for
the
Agent_C
ORBA
process
in non-
SSL
mode.
This port
is used
OSS IP NCE server
OSS Any port NCE server 12003 TCP for the
address IP address
NMS to
listen to
CORBA
requests
from the
OSS
through
the
CORBA
NBI.
Port for
the
Naming_
Service
process
in non-
SSL
mode.
The
Naming_
Service
process,
an
OSS IP NCE server ACE/TA
address IP address O-based
open-
source
naming
service
process
of the
CORBA
NBI, is
used to
register
CORBA
service
objects.
Notify_S
ervice
process,
an
ACE/TA
O-based
open-
source
notificati
on
OSS IP NCE server service
address IP address of the
CORBA
NBI, is
used to
forward
events to
the OSS
through
the
CORBA
NBI.
mode),
will use a
dynamic
ally
generate
d port
(1024-
65535).
If you
need to
configure
the
firewall,
make
sure that
these
ports are
Specified not
NCE server OSS IP
NCE server Any port OSS port on the TCP restricted
IP address address
server and that
the OSS
side
needs to
use a
fixed
port.
Otherwis
e, the
client
and
server
ports are
random,
and the
firewall
will
block the
mode),
will use a
dynamic
ally
generate
d port
(1024-
65535).
If you
need to
configure
the
firewall,
make
sure that
these
ports are
not
Specified
NCE server OSS IP restricted
NCE server Any port OSS port on the TCP
IP address address and that
server
the OSS
side
needs to
use a
fixed
port.
Otherwis
e, the
client
and
server
ports are
random,
and the
firewall
will
block the
communi
Port for
the
iNBXM
LSoapAg
ent
process.
This port
interconn
ects with
the
OSS IP NCE server XML1.1
address IP address NBI and
is used to
provision
services
for
access
NEs
through
the
XML1.1
NBI.
cally
enabled
and
always
exists
when the
NBINotif
yService
process
is started
and the
omc
alarm
function
is
enabled.
2. Port
inherit
OSS IP NCE server
OSS Any port NCE server 31232 TCP the
address IP address
OMCAg
ent
function
to
synchron
ize and
report
alarms.
The
client
uses this
port to
connect
to the
NBINotif
yService
process
to obtain
This is a
communi
cation
port that
the
N2510
server
provides
to the
NCE-T
for the
NCE-T
visiting
NCE server OSS IP
NCE server Any port OSS 8663 TCP the
IP address address
N2510
test
interface
and issue
an
automati
c optical
time
domain
reflectom
eter
(OTDR)
test.
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
Only for
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS NCE-
00 and later
Super.
NCEV1R18C
Yes Digital certificate (two-way) WSS None
00 and later
Yes SSL/TLS None
Yes SSL/TLS None

Yes SSL/TLS None
Yes SSL/TLS None
NCEV1R18C
Yes Token SSL/TLS None
00 and later
SNMPV1/V2c:
SNMPv1/SNMPv2c: NCEV1R18C
No none; SNMPV3: None
Community name, SNMPv3 00 and later
encryption
NCEV1R18C
00 and later

Yes SSL/TLS None
SNMPV1/V2c:
encryption
NCEV1R18C
No User Name/Password SNMPV3 None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
Yes None None None
10 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
Yes User Name/Password SSH None
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
Yes Token SSL/TLS None
10 and later

Yes HTTPS None
NCEV1R18C
Not Concerning Digital certificate (one-way) SSL/TLS None
00 and later

No SSL/TLS None

No SSL/TLS None

No SSL/TLS None
No SSL/TLS None

No SSL/TLS None
No HTTPS None
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
This record
describes
the
scenatio:A
Not Concerning None gent_COR
BA as a
client,and
OSS as a
server.
This record
describes
the
scenatio:
User Name/Password;Digital NCEV1R18C Notify_Ser
Not Concerning None
certificate (two-way) 00 and later vice as a
client,and
OSS as a
server.

No HTTPS None
Yes SSL/TLS None
NCEV1R18C
Yes Digital certificate (one-way) SSL/TLS None
00 and later
Compone Configuration File and
nt Parameter
textagentService sshd NBI None None
textagentService sshd NBI None None
FTP ftpd NBI None None

textagentService ftpd NBI None None
FTP ftpd NBI None None

textagentService ftpd NBI None None
NCE- /
AnalyzerKafkaService analyzerkafkasvc NetworkIn opt/oss/NCE/apps/AnalyzerKafkaServ None
sight ice/tools/kafka/config
$APP_ROOT/conf/nbi/rest/conf/rest_a
RestAgent rest_agent NBI gent.properties/JETTY_NOTIFY_SER None
VICE_PORT
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
onf/ii_corbaagent_bundle/bundle.cfg
NotifyService_SSLPort
NotifyService Notify_Service NBI None
NotifyService/*/etc/oss_cfg/nbi/corba/
cbb/nbi/nbicbb_3p/share/bin/ntf.cfg
sslport
NamingService_SSLPort
CorbaNamingService Naming_Service NBI None
CorbaNamingService/*/etc/oss_cfg/nb
i/corba/cbb/nbi/nbicbb_3p/share/bin/ns
.cfg
sslport
CorbaAgent Agent_CORBA NBI None
CORBAAgent_SSLPort
NCE-
NBIBridgeService NBIBridgeService NetworkIn None None
sight
APIManager apimlbservice CloudSOP None None
NBIService snmpagentservice CloudSOP None None

Configuration item Port in the
<Installation directory>/
TMF615AgentService tmf615agentservice CloudSOP {tenant}/apps/TMF615AgentService/c None
onf/Tmf615.properties configuration
file.
NBI activemqservice CloudSOP None None

NBIService snmpagentservice CloudSOP None None
CloudSOP-
UniEPService uniepservice None None
UniEP
NCE-
sight
NCE-
vsftpd vsftpd NetworkIn None None
sight
NCE-
sight
NCE-
sight
/
NBI activemqservice CloudSOP {tenant}/apps/ActiveMQService/conf/ None
activemq.xml/transportConnector
NorthboundCommunicatio
KARAF AC-BP None None
nService
nService
nService
nService
nService
APIManager APIMLBService AC-BP None None
/
opt/oss/NCE/apps/XMLAgent/conf/etc
XMLAgent xml_agent NBI None
/oss_cfg/nbi/xml/conf/xmlagent.cfg
HTTPS_URL HTTP_URL
APIManager apinotifyproxyservice CloudSOP None None
NCE-FAN
PonEmsTL1Service BmsPonEmsTL1 manageme None None
nt domain
NCE-FAN
PonAlarmTL1Service BmsPonAlarmTL1 manageme None None
nt domain
NCE-FAN
CltsiService cltsi manageme None None
nt domain
NCE-FAN
StdCltsiService StdCltsiDm manageme None None
nt domain
NCE-FAN
TL1NBIService TL1NBiDm manageme None None
nt domain
NCE-FAN
XML2TL1Service agt_cst_xml manageme None None
nt domain
CorbaAgent Agent_CORBA NBI None
CORBAAgent_Port
NamingService_Port
CorbaNamingService Naming_Service NBI /opt/oss/envs/Product- None
CorbaNamingService/*/etc/oss_cfg/nb
i/corba/cbb/nbi/nbicbb_3p/share/bin/ns
.cfg
port
NotifyService_Port
NotifyService Notify_Service NBI None
NotifyService/*/etc/oss_cfg/nbi/corba/
cbb/nbi/nbicbb_3p/share/bin/ntf.cfg
port
CorbaAgent Agent_CORBA NBI None None
NotifyService Notify_Service NBI None None
NCE-FAN
XMLSoapNBIService inbxmlsoap_agent manageme None None
nt domain
NBINotifyService nbinotifyservice NBI None None
NCE-T
TransGnlDevDmService las_web manageme None None
nt domain
Feature list
Destinatio Port
Source Source IP Source Destinatio Destinatio
Device Address Port n Device n Port
Address tion
The
process
UTraffic
Adapter
uses to
receive
NCE server NCE server
NCE server Any port NCE server 13185 TCP uTraffic
IP address IP address
request,
provide
network
inventory
data to
uTraffic.
Indicates
the
internal
communi
cation
port
Client IP NCE server between
XMLAge
nt and
ActiveM
Q
compone
nts.
collector
listen the
port, local
collector
NCE server Any port NCE server 41414 TCP tasks will
report
heartbeat
to this
port.

Issue 01 (01/07/2020) 105
Feature list
External
systems
can be
registered
with the
uTraffic
that
functions
as the
websocke
NCE server Any port NCE server 13849 TCP t server
and
receive
performa
nce
threshold-
crossing
alarms
generated
by the
uTraffic.
Listening
port for
NCE server NCE server the
NCE server Any port NCE server 13827 TCP
IP address IP address Collector
reportNB
I.
Instance
Manager
to
receives
NCE server NCE server RTP and
IP address IP address create
request
for
historical
data.
Gateway
to
receives
NCE server NCE server RTP
IP address IP address request
from
Insatnce
manager.
Listening
port for
NCE server Any port NCE server 9091 TCP the
collector
gateway.
Transit
NCE server NCE server 20003~2000
NCE server Any port NCE server TCP process
IP address IP address 4
port.

Issue 01 (01/07/2020) 106
Feature list
This port
is a
listening
port
opened
for the
ProductM
onitorAge
nt service
NCE server NCE server (python
IP address IP address process).
The port
is used to
receive
startup
and stop
requests
sent by
the
server.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
NCE server Any port NCE server TCP e(dr)
listens on
the port.
Used to
access the
master
and slave
databases.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
listens on
the port.
Used to
access the
master
and slave
databases.

Issue 01 (01/07/2020) 107
Feature list
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
NCE server Any port NCE server 32060 TCP e(dr)
listens on
the port.
Used to
access the
master
and slave
databases.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
listens on
the port.
Used to
access the
master
and slave
databases.
This port
is a
listening
port of
the
DeployA
gent
NCE server Any port NCE server 32040 TCP service.
This port
is used
for the
agent
service
deployme
nt system.

Issue 01 (01/07/2020) 108
Feature list
These
ports are
listening
ports of
the
CloudSO
P-UniEP
service
(Java
process).
They are
used for
NCE server NCE server 26600~2664 applicatio
NCE server Any port NCE server TCP
IP address IP address 9 n IR
reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
These
ports are
listening
ports of
the
CloudSO
P-UniEP
service
(Java
process).
They are
used for
reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.

Issue 01 (01/07/2020) 109
Feature list
This port
is a
listening
port of
the
RouteAge
nt service
(python
process).
NCE server NCE server This port
IP address IP address is used
for
registerin
g and
deregister
ing
service
routing
informati
on.
This port
is the
MCBusS
ervice
managem
ent port.
The port
is used
NCE server NCE server for
IP address IP address maintena
nce
operation
s, such as
offhookin
g,
onhookin
g, and
isolation.
This port
is the
MCERSe
rvice
managem
ent port.
The port
is used
NCE server NCE server for
IP address IP address maintena
nce
operation
s, such as
offhookin
g,
onhookin
g, and
isolation.

Issue 01 (01/07/2020) 110
Feature list
This port
is the
NCE server NCE server ServiceC
IP address IP address enter
managem
ent port.
This port
is the
NCE server Any port NCE server 30101 TCP Etcd
managem
ent port.
The port
used by
the karaf
process
NCE server Any port NCE server 19175 TCP provides
the
command
console
service.
Port used
by
AccessSe
rvice to
forward
NCE server NCE server authentic
IP address IP address ation
requests
in
MinAPIG
atewaySe
rvice.
Listening
port for
RMServi
ce to
NCE server NCE server access the
IP address IP address database
of
resource
relationsh
ips.

Issue 01 (01/07/2020) 111
Feature list
The port
used by
the
talgorith
mh,
talgorith
ml,
algorithm
org
process.
Provides
a parent-
child
process
communi
NCE server NCE server 23000~2310 cation
IP address IP address 0 service.
Used in
survivabil
ity
analysis /
fault
simulatio
n, preset
path,
optical
reach
graph to
parallel
calculatio
n.
Port used
by the
NM to
synchroni
NCE server NCE server ze
IP address IP address performa
nce
instances
to the
NCE.
Port used
by
SBIBridg
eService -
for all
NCE server Any port NCE server 9092 TCP requests
from
Collector
to
SBIBridg
eService.

Issue 01 (01/07/2020) 112
Feature list
BusServi
ce
managem
ent port.
This port
functions
as a
proxy
service
port to
support
HTTP. In
the
default
NCE server NCE server BusServi
IP address IP address ce
scenario,
HTTP is
disabled.
Therefore
, if a
service
uses this
port, it
must
ensure
communi
cation
security
of itself.
These
ports are
listening
ports of
the
service
(Java
process).
They are
used for
applicatio
NCE server NCE server 26100~2619 n IR
IP address IP address 9 reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
PaaS:the
NCE server NCE server port for
IP address IP address Discover
y

Issue 01 (01/07/2020) 113
Feature list
Maintena
nce port
NCE server Any port NCE server 32029 TCP of
OMMHA
.
IR
managem
ent port
for
maintena
NCE server NCE server nce
IP address IP address operation
s, such as
off-hook,
on-hook,
and
isolation
Backend
ERServic
e
managem
ent port
for
NCE server NCE server maintena
IP address IP address nce
operation
s, such as
off-hook,
on-hook,
and
isolation.
ER
managem
ent port
for
maintena
NCE server NCE server nce
IP address IP address operation
s, such as
off-hook,
on-hook,
and
isolation.

Issue 01 (01/07/2020) 114
Feature list
The port
used by
the karaf
NCE server NCE server process
IP address IP address provides
the client
service.
Healthche
ck port
for ATS
NCE server NCE server compone
IP address IP address nt within
APINotif
yProxySe
rvice.
Configura
tion
managem
ent port
NCE server NCE server for ATS
IP address IP address compone
nt within
APINotif
yProxySe
rvice.
Health
check
NCE server Any port NCE server 30107 TCP port of
CronServ
ice.
Status
NCE server Any port NCE server 32029 TCP query
port
The port
used by
the karaf
process
the
command
console
service.

Issue 01 (01/07/2020) 115
Feature list
The port
used by
the karaf
process
the
command
console
service.
inventory
resource
collecting
for small
N
products
(such as
uTraffic).
Client
requests
are
forwarde
d to
AgentInte
grateServ
ice
through
the
NCE server NCE server reverse
IP address IP address proxy
function
of
U2kProx
yService.
Certificat
e bi-
directiona
l
verificati
on of
U2kProx
yService
is
responsib
le for
channel
security,
user name
TCP port
for
forwardin
g traps
NCE server NCE server internally.
IP address IP address Traps are
forwarde
d to NEs
through
this port.

Issue 01 (01/07/2020) 116
Feature list
Proxy
port for
TL1
command
s. This
NCE server Any port NCE server 9820 TCP port is
used to
run TL1
command
s
internally
The
process
nemgr_isi
te uses
NCE server Any port NCE server 13083 TCP this port
to receive
Web
HTTP
request.
NwDataS
ynUI
process
port,
which
provides
NCE server NCE server the GUI
IP address IP address display
service
for
southbou
nd data
synchroni
zation.
Registry
process
port,
NCE server NCE server which is
IP address IP address used to
allocate
service
processes.

Issue 01 (01/07/2020) 117
Feature list
ZMQ
channel
port of
the
SingleSi
mService
process,
which is
used for
data
transmissi
on
between
the
NCE server Any port NCE server 18400 TCP SingleSi
mService
process
and the
bottom
layer.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.
ZMQ
channel
port of
the
bottom
layer,
which is
used for
data
transmissi
on
between
the
NCE server NCE server 18700~1870 bottom
IP address IP address 1 layer and
the
SingleSi
mService
process.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.

Issue 01 (01/07/2020) 118
Feature list
The port
used by
the
WhatIfAn
alysisHel
pService
NCE server NCE server 31800~3189 process
IP address IP address 9 provides
the what-
if
analysis
help
informati
on service
The port
used by
the
SMPMQ
Service
process
provides
NCE server Any port NCE server TCP the
SMPMan
agerServi
ce service
for data
transfer in
SSL
mode.
karaf CLI
NCE server Any port NCE server 19115 TCP service
port
The port
NCE server NCE server used by
IP address IP address etcd
process.
The port
used by
the karaf
process
the
command
console
service.

Issue 01 (01/07/2020) 119
Feature list
These
ports are
listening
ports of
the
homenet
work
service(Ja
va
process).
They are
used for
reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
The port
is opened
for
SBIBridg
eService(
correspon
ding
proccess
name is
NCE server Any port NCE server 8080 TCP sbibridge
service),
and is
used to
receive
the
collection
configura
tion
request.

Issue 01 (01/07/2020) 120
Feature list
This port
is an open
port for
the
KARAF
process
correspon
ding to
the
NCE server NCE server NetconfC
IP address IP address lientServi
ce
service.
This
service
provides
local
command
line
services.
This port
is an open
port for
the
KARAF
process
correspon
ding to
the
NCE server NCE server NetconfS
IP address IP address erverServ
ice
service.
This
service
provides
local
command
line
services.

Issue 01 (01/07/2020) 121
Feature list
This port
is an open
port for
the
KARAF
process
correspon
ding to
the
NCE server Any port NCE server 19132 TCP DTPServi
ce
service.
This
service
provides
local
command
line
services.
ZMQ
channel
port of
the
ProtoInfS
ervice
process,
which is
used for
data
transmissi
on
between
the
NCE server Any port NCE server 8420 TCP ProtoInfS
ervice
process
and the
bottom
layer.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.

Issue 01 (01/07/2020) 122
Feature list
ZMQ
channel
port of
the
SingleSi
mService
process,
which is
used for
data
transmissi
on
between
the
NCE server Any port NCE server 8720~8721 TCP SingleSi
mService
process
and the
bottom
layer.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.
UDP is
used only
in the
GaussDB
scenario.
The port
is used to
collect
UDP
connectio
NCE server NCE server 32080~3208 ns
NCE server Any port NCE server UDP
IP address IP address 9 between
the
statistics
collection
process of
the
GaussDB
server
and the
main
process.

Issue 01 (01/07/2020) 123
Feature list
UDP is
used only
in the
GaussDB
scenario.
The port
is used to
collect
UDP
connectio
NCE server NCE server 26500~2650 ns
NCE server Any port NCE server UDP
IP address IP address 9 between
the
statistics
collection
process of
the
GaussDB
server
and the
main
process.
The port
used by
the
TrafficSy
ncService
NCE server NCE server 31800~3189 process,
IP address IP address 9 which
provides
traffic
synchroni
zation
service.
The port
used by
the
TrafficSy
ncCerMg
rService
NCE server Any port NCE server TCP process,
which
provides
certificate
managem
ent
service.

Issue 01 (01/07/2020) 124
Feature list
The port
used by
the
OpenEM
Service's
NCE server NCE server Karaf
IP address IP address process to
provide
local
command
line
services.
The ports
used by
the
nemgr_v8
trans
process
NCE server NCE server 13210~1322 provides
IP address IP address 4 the HTTP
service.Cl
ient--
webserver
--
nemgr_v8
trans.
Internal
port used
to
NCE server NCE server forward
IP address IP address http
request of
nemgr
explorer.
Used by
NCE server NCE server TransGnl
IP address IP address DevDM
process.

Issue 01 (01/07/2020) 125
Feature list
The
IPDcnD
M
process
listens to
this port
and
receives
the
DHCP
requests
from NEs
or sends
the
DHCP
NCE server Any port NCE server 13241 UDP responses
to NEs.
IPDcnD
M
process
listens on
port
13241. It
suggest
that close
the port
on
hardware
firewall.
Port for
the gcli
process.
This port
is used to
NCE server NCE server process
IP address IP address HTTP
requests
from
GCLI
services.
Port for
the
QuickDis
play
process.
This port
NCE server NCE server is used to
IP address IP address process
HTTP
requests
from
QuickDis
play
services.

Issue 01 (01/07/2020) 126
Feature list
The port
used by
the
ip_isstar
process
NCE server NCE server provides
IP address IP address open data
and report
export
service
for IP
domain.
Port for
nesvc_v8
ptn
processes.
This port
is used
for
communi
cation
between
NEs and
the
NCE server NCE server 13351~1336 nemgr_v8
IP address IP address 5 ptn
managem
ent
process.
NESVC_
V8PTN is
multiple
instances
and one
instance
matches
one port

Issue 01 (01/07/2020) 127
Feature list
Listening Port
Encryption Special
Configurable Authentication Mode Version
Mode Scenario
(Y/N)
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
10 and later

Issue 01 (01/07/2020) 128
Feature list
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
No None SSL/TLS None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
No None None None
00 and later

Issue 01 (01/07/2020) 129
Feature list
NCEV1R18C
00 and later
Need to
deploy
NCEV1R18C
No User Name/Password None master-
00 and later
slave
database.
Need to
deploy
NCEV1R18C
00 and later
slave
database.

Issue 01 (01/07/2020) 130
Feature list
Need to
deploy
NCEV1R18C
00 and later
slave
database.
Need to
deploy
NCEV1R18C
00 and later
slave
database.
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 131
Feature list
NCEV1R18C
00 and later
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 132
Feature list
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 133
Feature list
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later

No None None
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 134
Feature list
NCEV1R18C
No None None None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 135
Feature list
In the
default
BusService
scenario,
this port is
disabled.
When a
service
NCEV1R18C
No None None installs
00 and later
BusService
on GUIs,
relevant
parameters
must be
configured
to enable
this port.
NCEV1R18C
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later

Issue 01 (01/07/2020) 136
Feature list
Distributed
NCEV1R18C access
No Digital certificate (two-way) HTTPS
00 and later node HA
scenario
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 137
Feature list
NCEV1R18C
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
00 and later
Used in
NCEV1R18C distributed
00 and later HA
scenarios.
NCEV1R18C
10 and later

Issue 01 (01/07/2020) 138
Feature list
NCEV1R18C
10 and later
NCEV1R18C
00 and later
Digital certificate (one-

NCEV1R18C
No way);Digital certificate (two- SSL/TLS None
00 and later
way)

Issue 01 (01/07/2020) 139
Feature list
SNMPV1/V2c:
encryption
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 140
Feature list
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No None None None
00 and later

Issue 01 (01/07/2020) 141
Feature list
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later

Issue 01 (01/07/2020) 142
Feature list
NCEV1R18C
10 and later
NCEV1R18C
10 and later

Issue 01 (01/07/2020) 143
Feature list
NCEV1R18C
10 and later
NCEV1R18C
10 and later

Issue 01 (01/07/2020) 144
Feature list
NCEV1R18C
10 and later
NCEV1R18C
No None None None
00 and later

Issue 01 (01/07/2020) 145
Feature list
NCEV1R18C
No None None None
00 and later
NCEV1R18C
00 and later

Issue 01 (01/07/2020) 146
Feature list
NCEV1R18C
00 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later

Issue 01 (01/07/2020) 147
Feature list
NCEV1R18C
10 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later

Issue 01 (01/07/2020) 148
Feature list
Port 13241
is enabled
only on
SUSE
Linux. On
SUSE
Linux, port
67 is
mapped to
port 13241
using
No None iptables,
and the
IPDcnDM
process
listens on
port 13241.
It suggest
that close
the port on
hardware
firewall.
NCEV1R18C
00 and later
NCEV1R18C
No Token None None
00 and later

Issue 01 (01/07/2020) 149
Feature list
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
10 and later

Issue 01 (01/07/2020) 150
Feature list
Configuration File and

Service Process Component
Parameter
UTrafficAdapter UTrafficAdapter PMS None
ActiveMQService ActiveMQ NBI ActiveMQService/*/conf/activemq.xml
transportConnector
/
opt/oss/NCE/apps/UniCollectAgentSer
NCE-
UniCollectAgentService UniCollectAgentService vice/conf/agentconf/agentconf.propertie
Collector
s/
agent.task.port

Issue 01 (01/07/2020) 151
Feature list
NCE-
NBIBridgeService NBIBridgeService NetworkInsig None
ht
NCE-
PmNbiService ReportNBI NetworkInsig None
ht
NCE-
ProvisionService InstanceManager NetworkInsig None
ht
NCE-
ProvisionService Gateway NetworkInsig None
ht
NCE-
ProvisionService Gateway NetworkInsig None
ht
NCE-
TransitService TransitService NetworkInsig None
ht

Issue 01 (01/07/2020) 152
Feature list
/
CloudSOP-
ProductMonitorAgent productmonitoragent opt/oss/manager/apps/ProductMonitorA
UniEP
gent/etc/mcagent.conf/listen_port
CloudSOP-
MCDBProxyService mcdr None
UniEP
CloudSOP-
UniEP

Issue 01 (01/07/2020) 153
Feature list
CloudSOP-
UniEP
CloudSOP-
UniEP
CloudSOP-
DeployAgent deployagent None
UniEP

Issue 01 (01/07/2020) 154
Feature list
/opt/oss/manager/apps/DeployAgent-
*/etc/install/default_value.json/IRListe
CloudSOP- nPorts
UniEPService All
UniEP /opt/oss/envs/Product-
ProductMonitorAgent/service/etc/instal
l/default_value.json/IRListenPorts
CloudSOP- nPorts
UniEPService All

Issue 01 (01/07/2020) 155
Feature list
CloudSOP-
RouterAgent routeragent None
UniEP
CloudSOP-
MCBusService mcir None
UniEP
CloudSOP-
MCERService mcer None
UniEP

Issue 01 (01/07/2020) 156
Feature list
CloudSOP-
ServiceCenter sc None
UniEP
CloudSOP-
Etcd cse-etcd None
UniEP
ACMenuService karaf AC-BP etc/org.apache.karaf.shell.cfg
MinAPIGatewayService minapigatewayservice CloudSOP None
ODRS rmservice CloudSOP None

Issue 01 (01/07/2020) 157
Feature list
NCE-T
talgorithmh, talgorithml,
ACTService control None
algorithmorg
domain
NCE-
NBIBridgeService NBIBridgeService NetworkInsig None
ht
NCE-
SBIBridgeService SBIBridgeService NetworkInsig None
ht

Issue 01 (01/07/2020) 158
Feature list
<Installation
directory>/manager/apps/BusService/et
BusService ir CloudSOP
c/nginx/conf/ir_exts/server_ir_lo.conf.t
emplate
CloudSOP- nPorts
UniEPService All
MessagingLBService msgdiscovsrv CloudSOP None

Issue 01 (01/07/2020) 159
Feature list
Configuration item rpc/addr/port in the

configuration file <Installation
directory>/Product
name/apps/OMMHAService/module/ha
com/conf/hacom.xml
Configuration item rpc/addr/port in the
directory>/Product
name/apps/OMMHAService/etc/templa
te/hacom.xml.template
OMMHAService ommha CloudSOP
Configuration item port in the
directory>/Product
name/apps/OMMHAService/bin/switch
over.sh
Configuration item port in the
directory>/Product
name/apps/OMMHAService/bin/forbid
en_switch.sh
Configuration item
processes/ir/protocols/MGRMT in
<Installation
directory>/manager/apps/BusService/p
BusService ir CloudSOP ub/app_define.json
Configuration item processes/ir-{0}-
{0}/MGRMT in <Installation
directory>/manager/apps/BusService/et
c/sysconf/BusService-{version}.json
Configuration item
processes/ber/protocols/MGRMT in
{tenant}/apps/BackendERService/pub/a
pp_define.json
BackendERService ber CloudSOP Configuration item processes/ber-{0}-
directory>/
{tenant}/apps/BackendERService/etc/s
ysconf/BackendERService-
{version}.json
Configuration item
processes/er/protocols/MGRMT in
{tenant}/apps/ERService/pub/app_defi
ne.json
ERService er CloudSOP
Configuration item processes/er-{0}-
directory>/
{tenant}/apps/ERService/etc/sysconf/E
RService-{version}.json

Issue 01 (01/07/2020) 160
Feature list
OmAgentService karaf AC-BP None
APINotifyProxyService apinotifyproxyservice CloudSOP None
APINotifyProxyService apinotifyproxyservice CloudSOP None
CronService cron CloudSOP None
/
CloudSOP- opt/oss/manager/apps/OMMHAService
OMMHAService ommha
UniEP /module/hacom/conf/hacom.xml/rpc-
>addr->port
/opt/oss/envs/Product-OMPubService/
{time-
OMPubService KARAF AC-BP
shot}/controller/etc/org.apache.karaf.sh
ell.cfg

Issue 01 (01/07/2020) 161
Feature list
NorthboundCommunicationService/
KARAF AC-BP {time-
nService
ell.cfg
NCE- $APP_ROOT/bin/start_AgentIntegrate.
AgentIntegrateService AgentIntegrate
Common sh
NCE-FAN
TrapTransProxyService TrapTransProxy management None
domain

Issue 01 (01/07/2020) 162
Feature list
NCE-FAN
inTL1NBIService inTL1NBiDm management None
domain
NCE-FAN
ISiteNeMgrService nemgr_isite management None
domain
NwDataSynUI NwDataSynUI IP-Crystal None
Registry Registry IP-Crystal None

Issue 01 (01/07/2020) 163
Feature list
ProtoInfService ProtoInfService IP-Crystal None
SingleSimService SingleSimService IP-Crystal None

Issue 01 (01/07/2020) 164
Feature list
WhatIfAnalysisHelpServic WhatIfAnalysisHelpServic
IP-Crystal None
e e
NCE-
SMPMQService SMPMQService None
Common
opt/oss/envs/Product-
FANSouthService/{time-
FAN-South FAN-South FAN-South shot}/controller/etc/org.apache.karaf.sh
ell.cfg
CloudSOP-
Etcd cse-etcd None
UniEP
/opt/oss/envs/Product-ACService/
NCE-IP
{time-
ACService KARAF control
domain
ell.cfg

Issue 01 (01/07/2020) 165
Feature list
NCE-FAN /
HomeNetWorkService homenetworkservice management opt/oss/NCE/apps/XXXXXService/etc/
domain sysconf/XXXXXServiceXXXXX.json
NCE-
SBIBridgeService sbibridgeservice NetworkInsig None
ht

Issue 01 (01/07/2020) 166
Feature list
NetconfClientService/{time-
NetconfClientService KARAF AC-BP
ell.cfg
NetconfServerService/{time-
NetconfServerService KARAF AC-BP
ell.cfg

Issue 01 (01/07/2020) 167
Feature list
/opt/oss/envs/Product-DTPService/
{time-
DTPService DTPService AC-BP
ell.cfg
ProtoInfService ProtoInfService IP-Crystal None

Issue 01 (01/07/2020) 168
Feature list
SingleSimService SingleSimService IP-Crystal None
CloudSOP-
UniEPService gaussdb None
UniEP

Issue 01 (01/07/2020) 169
Feature list
CloudSOP-
UniEPService gaussdb None
UniEP
TrafficSyncService TrafficSyncService IP-Crystal None
TrafficSyncCerMgrService TrafficSyncCerMgrService IP-Crystal None

Issue 01 (01/07/2020) 170
Feature list
/opt/oss/envs/Product-OpenEMService/
NCE-IP
{time-
OpenEMService Karaf management
domain
ell.cfg sshPort
NCE-T
NemgrV8transService nemgr_v8trans management None
domain
NCE-T
NemgrWebtransService nemgr_webtrans management None
domain
NCE-T
TransGnlDevDm TransGnlDevDm management None
domain

Issue 01 (01/07/2020) 171
Feature list
NCE-IP
GcliService IPDcnDM management None
domain
NCE-IP
GcliService gcli management NULL
domain
NCE-IP
PathViewerService QuickDisplay management None
domain

Issue 01 (01/07/2020) 172
Feature list
NCE-IP
IPBaseService ip_isstar management None
domain
NCE-IP
NemgrV8ptnService nesvc_v8ptn management None
domain

Issue 01 (01/07/2020) 173
Feature list
Remarks
None
None
None

Issue 01 (01/07/2020) 174
Feature list
None
None
None
None
None
None

Issue 01 (01/07/2020) 175
Feature list
None
None
None

Issue 01 (01/07/2020) 176
Feature list
None
None
None

Issue 01 (01/07/2020) 177
Feature list
None
None

Issue 01 (01/07/2020) 178
Feature list
None
None
None

Issue 01 (01/07/2020) 179
Feature list
None
None
Customize
d by
microservi
ces
None
None

Issue 01 (01/07/2020) 180
Feature list
None
None
None

Issue 01 (01/07/2020) 181
Feature list
None
None
None

Issue 01 (01/07/2020) 182
Feature list
PaaS Port
PaaS port
PaaS Port
PaaS port

Issue 01 (01/07/2020) 183
Feature list
None
None
None
None
None
None

Issue 01 (01/07/2020) 184
Feature list
None
None
None

Issue 01 (01/07/2020) 185
Feature list
None
None
None
None

Issue 01 (01/07/2020) 186
Feature list
None
None

Issue 01 (01/07/2020) 187
Feature list
None
None
None
None
None

Issue 01 (01/07/2020) 188
Feature list
Each
homenetwo
rk
application
process
occupies
one port.
None

Issue 01 (01/07/2020) 189
Feature list
None
None

Issue 01 (01/07/2020) 190
Feature list
None
None

Issue 01 (01/07/2020) 191
Feature list
None
None

Issue 01 (01/07/2020) 192
Feature list
None
None
None

Issue 01 (01/07/2020) 193
Feature list
None
None
None
None

Issue 01 (01/07/2020) 194
Feature list
None
None
None

Issue 01 (01/07/2020) 195
Feature list
None
None

Issue 01 (01/07/2020) 196
Port
Source Source IP Source Destinatio Destination Destinatio
Protocol Descript
Device Address Port n Device IP Address n Port
ion
NCE server NCE server IP
NCE server Any port NCE server 12181 TCP kafka nbi.
IP address address
The port
used by
the
zookeeper
NCE server NCE server IP process
IP address address ,used by
followers
to connect
to the
leader.
zookeeper
NCE server NCE server IP node
IP address address leader
election.
This port
is the
client port
for the
NwDataS
ync
NCE server Any port NCE server 22 TCP service to
IP address address
connect to
the SFTP
server and
obtain
data from
the server.
The port
used by
the
utrafficbas
icservice
process
NCE server NCE server IP provides
IP address address the
separate
service for
inventory
and
performan
ce data.
Port used
by the
collector
to report
backup
and
restoration
results
and obtain
NCE server NCE server IP FTP
IP address address configurat
ion
parameter
s and the
type of the
last
backup
and
restoration
.Port used
by the
NM to
synchroni
NCE server NCE server IP ze
IP address address performan
ce
instances
to the
NCE.
UTrafficB
asicServic
e provides
an
NCE server Any port NCE server 13815 TCP interface
IP address address
for
providing
model
service.
Port used
to receive
NCE server Any port NCE server 13971 TCP raw data
IP address address
from the
collector.
uTraffic
server and
Flow
Client IP NCE server IP Collector
address address server
SFTP file
transfer
port.
This port
is opened
for the
DHCP
service
(usr/sbin/d
hcpd
process).
When
others
node OS
is restored
on one
node,
UDP ports
opened for
the node
use the
NCE server NCE server IP DHCP
NCE server 68 NCE server 67 UDP
IP address address protocol
that
complies
with the
RFC-2131
specificati
ons.
This port
is used to
restore the
node OS .
The port
is
temporaril
y enabled
only
during OS
restoration
.
This port
is opened
for the
TFTP
service
(/usr/sbin/
in.tftpd
process).
This port
uses the
TFTP
protocol
that
complies
NCE server NCE server IP with the
NCE server Any port NCE server 69 UDP
IP address address RFC-1350
specificati
ons.
This port
is used to
restore the
node OS .
The port
is
temporaril
y enabled
only
during OS
restoration
.
process).
When
others
node OS
is restored
on one
node, the
stable port
67 will be
opened,
also an
random
UDP ports
will be
opened
and bind
IP
Address
NCE server Any port NCE server 4096~65535 TCP 0.0.0.0,
IP address address
this port is
dispatched
by DHCP
service
which use
the DHCP
protocol
that
complies
with the
RFC-2131
specificati
ons.
This port
is used to
restore the
node OS .
The port
This port
is a
listening
port
opened for
the
ProductM
onitorAge
nt service
NCE server Any port NCE server 26450 TCP (python
IP address address
process).
The port
is used to
receive
startup
and stop
requests
sent by
the server.
This port
is used for
the
communic
ation
between
IP address address
primary
and
secondary
sites in an
HA
system.
This port
is a
ZooKeepe
NCE server NCE server IP r election
IP address address port on
the
applicatio
n plane.
This port
is a
ZooKeepe
r data
NCE server NCE server IP synchroni
IP address address zation
port on
the
applicatio
n plane.
Applicatio
n area
NCE server Any port NCE server 32041 TCP zookeeper
IP address address
request
port.
The
MCDeplo
yService
service is
assigned
to the
listening
NCE server NCE server IP 32090~3209 port of the
IP address address 9 database
for
applicatio
n access
to the
cache
database
(Redis).
The
MCDeplo
yService
service is
assigned
to the
listening
for
applicatio
n access
to the
cache
database
(Redis).
The
MCDeplo
yService
service is
assigned
to the
listening
for
applicatio
n access
to the
cache
database
(Redis).
The
MCDeplo
yService
service is
assigned
to the
listening
ports of
NCE server NCE server IP 32080~3208 the mysql,
IP address address 9 gauss, and
zenith
databases
for
applicatio
n access
to the
relational
database.
The
MCDeplo
yService
service is
assigned
to the
listening
ports of
NCE server NCE server IP 26500~2650 the mysql,
IP address address 9 gauss, and
zenith
databases
for
applicatio
n access
to the
relational
database.
This port
is a
listening
port of the
DBHASw
itchServic
e. This
NCE server Any port NCE server 32013 TCP port is
IP address address
used for
the
DataBase
High
Availabilit
y Switch
System.
This port
is a
listening
port of the
DeployAg
ent
NCE server Any port NCE server 32040 TCP service.
IP address address
This port
is used for
the agent
service
deployme
nt system.
These
ports are
listening
ports of
the
CloudSOP
-UniEP
service
(Java
process).
They are
used for
NCE server NCE server IP 26600~2664 applicatio
IP address address 9 n IR
reverse
agent
ports and
are
dynamical
ly
allocated.
Each
applicatio
n process
occupies
one port.
These
ports are
listening
ports of
the
CloudSOP
-UniEP
service
(Java
process).
They are
used for
NCE server NCE server IP 31800~3189 applicatio
IP address address 9 n IR
reverse
agent
ports and
are
dynamical
ly
allocated.
Each
applicatio
n process
occupies
one port.
This port
is a
listening
port of the
CloudSOP
-UniEP
service
(nginx
NCE server NCE server IP process).
IP address address This port
is used for
internal
routing
between
managem
ent plane
services
on nodes.
This port
is a
listening
port of the
MCBusSe
rvice
(nginx
process).
This port
is used for
NCE server Any port NCE server 26301 TCP obtaining
IP address address
the IP
address,
port, and
software
package
directory
of the
service
deployme
nt system.
This port
is the
NCE server NCE server IP ServiceCe
IP address address nter
managem
ent port.
This port
NCE server NCE server IP is the Etcd
IP address address managem
ent port.
This port
NCE server NCE server IP is the Etcd
IP address address managem
ent port.
The port
is used by
EtcdServi
ce
process, it
IP address address the service
for
communic
ation to
etcd
client.
The port
is an open
port
provided
by
NCE server NCE server IP EtcdServi
IP address address ce service,
and it
communic
ates with
other etcd
service.
The Dmq
process
listens to
the port
NCE server NCE server IP and
IP address address provides
message
channel
functional
ity.
The port
used by
the
zookeeper
process
provides
NCE server NCE server IP the
IP address address communic
ation
service for
zookeeper
leader and
follower
node.
The port
used by
the karaf
process
provides
the remote
NCE server NCE server IP call
IP address address service for
file
transfer or
communic
ation in
SSL
mode.
Port used
for
receiving
https
request
NCE server NCE server IP from the
IP address address third party
applicatio
n
forwarded
by the
North LB.
Port used
to receive
API query
NCE server NCE server IP requests
IP address address from
MinAPIG
atewaySer
vice.
Port used
to
synchroni
ze API
NCE server Any port NCE server 27335 TCP informatio
IP address address
n from
MinAPIG
atewaySer
vice.
MinAPIG
ateway
server
port,
which is
an HTTP
protocol
used to
NCE server NCE server IP listen to
IP address address WEBSOC
KET
persistent
connectio
ns
forwarded
by the
APIMLB
Service.
Keepalive
d receives
Internet
Control
Message
Protocol
(ICMP)
heartbeats
from other
keepalive
NCE server NCE server IP d to
IP address address determine
which
node
functions
as the
active
node in an
active/stan
dby
relationshi
p.
Keepalive
d receives
Internet
Control
Message
Protocol
(ICMP)
heartbeats
from other
keepalive
NCE server NCE server IP d to
IP address address determine
which
node
functions
as the
active
node in an
active/stan
dby
relationshi
p.
Port used
by the
Kafka
process to
listen to
NCE server NCE server IP messages.
IP address address The
process is
started by
ODAEMe
ssageQue
ueService.
Listening
port for
the
EMServic
NCE server NCE server IP e service.
IP address address It
distributes
and
processes
events.
Listening
port for
the
MRBServ
NCE server NCE server IP ice
IP address address service. It
distributes
and
processes
messages.
Listening
port for
the
SyslogCol
lectorServ
NCE server 514 NCE server 31010 UDP ice
IP address address
service. It
receives
syslog
logs of
NEs.
Listening
port for
the
SystemSer
vice
NCE server Any port NCE server 31007 TCP service. It
IP address address
manages
configurat
ion
informatio
n.
This port
provides
the
NCE server NCE server IP function
IP address address of
invoking
CORBA
interfaces.
Listening
port for
the
itmservice
NCE server Any port NCE server 31015 TCP process. It
IP address address
manages
tasks in a
centralize
d manner.
Listening
port for
the
TrapRecei
ver
process.
This port
is used to
communic
ate with
the service
NCE server Any port NCE server 11101~11104 TCP such as
IP address address
FMAdapt
erService.
It
provides
the
function
of
distributin
g and
processing
traps.
Port of the
coordinato
r process.
This port
is used to
communic
ate with
IP address address FusionInsi
ght cluster
for
managing
and
forwardin
g data
segments.
Port of the
broker
process.
External
services
NCE server NCE server IP can use
IP address address this port
to query
informatio
n about
the Druid
service.
Port of the
historical
process.
This port
is used to
communic
ate with
the
NCE server Any port NCE server 26202 TCP FusionInsi
IP address address
ght cluster
for
loading
and
disclosing
historical
data
segments.
Port of the
overlord
process.
This port
is used to
communic
ate with
IP address address
FusionInsi
ght cluster
for
receiving
and
coordinati
ng tasks.
26204:
Port for
the
middleMa
nager
process of
the Druid
service.
26205-
NCE server NCE server IP 26204~2629
NCE server Any port NCE server TCP 26299:
IP address address 9
Ports
assigned
for the
Druid
service
when data
processing
tasks are
started.
The port
NCE server NCE server IP transmits
IP address address data to
MPPDB.
Port
occupied
by Spark
(Driver)
for Spark
NCE server NCE server IP 22600~2289 driver
IP address address 9 listening,
Spark UI,
and Spark
shuffle
operations
.
The port
used by
the
zookeeper
process
IP address address
the
election
service for
zookeeper
service.
TSDNDri
verService
service
listening
Client IP 32768~6 NCE server IP 22900~2299 port for
Client NCE server TCP
address 1000 address 9 inter-
service IR
bus
communic
ation port.

NCE server Any port NCE server 32018 TCP IR port
IP address address
The port
used by
the
HFSFileA
gent
microservi
ce
IP address address
the HFS
(Distribut
ed File
System)
service for
file
transfer.
These
ports are
listening
ports of
the service
(Java
process).
They are
used for
applicatio
n IR
NCE server Any port NCE server TCP reverse
agent
ports and
are
dynamical
ly
allocated.
Each
applicatio
n process
occupies
one port.
Listening
port for
the
Messagin
gLBServi
ce service.
NCE server NCE server IP This port
IP address address is used for
other
applicatio
ns to
access
messaging
services.
Listening
port for
IP address address Messagin
gService
service.
Listening
port for
the
NCE server Any port NCE server 26328 TCP Messagin
IP address address
gBrokeSer
vice
service.
Data
NCE server NCE server IP duplicatio
IP address address n port of
OMMHA.
Heartbeat
NCE server Any port NCE server 32026 TCP port of
IP address address
OMMHA.
The
managem
NCE server NCE server IP ent plane
IP address address zookeeper
requests
ports.
Heartbeat
NCE server NCE server IP link
NCE server 32026 NCE server 32026 TCP
IP address address listening
port.
Data
port
Port used
by the
Kafka
process to
listen to
NCE server NCE server IP messages.
IP address address The
process is
started by
InvMessa
geQueueS
ervice.
These
ports are
listening
ports that
ACTServi
ce\TSDN
DriverSer
vice\TSD
NSouthAc
NCE server NCE server IP 32082~3208 cessServic
IP address address 3 eallocates
to mysql
database.
They are
used for
applicatio
ns to
access the
relational
database.
Port used
to
synchroni
ze API
informatio
NCE server Any port NCE server 27336 TCP n between
IP address address
MinAPIG
atewaySer
vice
service
nodes.
Zookeeper
process
listening
port, as
NCE server NCE server IP the server
IP address address terminal
to
communic
ate with
Kafka.
VIPservic
e process
NCE server Any port NCE server 31821 TCP listen port,
IP address address
use for
web visit.
DRServic
e process
NCE server NCE server IP listen port,
IP address address used for
inner
heartbeat.
The
DRServic
e process
listens on
NCE server NCE server IP the port
IP address address and is
used for
disaster
recovery
heartbeat.
The port
used by
the
arbitration
-etcd
process,
NCE server Any port NCE server 2390 TCP DRServic
IP address address
e will
connect
this port
to get the
arbitration
status.
The port
used by
the
arbitration
-etcd
process
NCE server NCE server IP for ETCD
IP address address internal
communic
ation,
synchroni
zation of
raft status
and data.
The port
used by
the
arbitration
-monitor
process
and the
NCE server NCE server IP heartbeat
IP address address of the
arbiter-
monitor
between
the active
and
standby
clusters.
The port
is a port
open for
DTPServi
ce (the
correspon
ding
process
NCE server Any port NCE server 19130 TCP name is
IP address address
DTPServi
ce), which
provides
distributed
transactio
n cluster
managme
nt.
This port
is listened
to by the
devicedb
service
instance
and
receives
connectio
NCE server Any port NCE server 16431 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
The port
used by
the
OMPubSe
rvice karaf
process
provides
NCE server NCE server IP the remote
IP address address call
service for
file
transfer or
communic
ation in
SSL
mode.
The port
used by
the
Northbou
ndCommu
nicationSe
rvice karaf
process
IP address address the remote
call
service for
file
transfer or
communic
ation in
SSL
mode.
This port
is listened
to by the
commond
b service
instance
and
receives
connectio
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
localdb
service
instance
and
receives
connectio
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
fmlogdb
service
instance
and
receives
connectio
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
fcapsdb
service
instance
and
receives
connectio
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
secmdb
service
instance
and
receives
connectio
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
omdb
service
instance
and
receives
connectio
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
The port
used by
the karaf
process
provides
the service
NCE server Any port NCE server 19120 TCP for
IP address address
message
transfer or
communic
ation
among
nodes.
The port
used by
the
ACMenuS
erviceproc
ess
provides
the node
NCE server 19177 NCE server 19177 TCP conmunic
IP address address
ation
service for
file
transfer or
communic
ation in xx
(SSL)
mode.
The port
used by
the
Northbou
ndCommu
nicationSe
rvice karaf
process
IP address address the remote
call
service for
file
transfer or
communic
ation in
SSL
mode.
The port
used by
the
OMPubSe
rvice karaf
process
provides
NCE server NCE server IP the remote
IP address address call
service for
file
transfer or
communic
ation in
SSL
mode.
Port for
forwardin
g mobile
app
NCE server NCE server IP pushing
IP address address messages
between
NCE
services
over SSL.
This port
is an open
port for
DmqKafk
aService,
NCE server Any port NCE server 9094 TCP which
IP address address
provides a
distributed
message
bus
service.
This port
is listened
by
U2kProxy
Service,
and
reversely
proxies
rest
requests
from the
third
parties
(such as
utraffic) in
SSL(TLS
v1.2)
mode. The
NCE server Any port NCE server 13161 TCP third party
IP address address
client will
be able to
communic
ate with
internal
services
(such as
AgentInte
gratServic
e) through
this
service
after
bidirectio
nal
certificate
authentica
tion.
Bi-
directional
authentica
tion port
provided
by
U2kProxy
Service
NCE server NCE server IP for
IP address address uTraffic to
connect
with NCE,
forwards
requests
from
utraffic
related to
IPFPM.
The port
is used by
the Etcd
process.Pr
NCE server NCE server IP ovide the
IP address address distribute
lock and
leader
election
service.
The port
is used by
the Etcd
process.Pr
NCE server NCE server IP ovide the
IP address address distribute
lock and
leader
election
service.
UIBacken
d process
port,
which
provides
IP address address foregroun
d GUI
display
service for
what-if
analysis.
NwDataS
ync
process
port,
which
provides
IP address address backgroun
d service
for
southboun
d data
synchroni
zation.
UIService
process
port,
which
provides
the
backgroun
NCE server NCE server IP d service
IP address address and
topology
caching
function
for
foregroun
d GUI
display.
ParseInfS
ervice
process
port,
NCE server NCE server IP which
the
topology
restoration
service.
SinglePars
eService
process
port,
NCE server Any port NCE server 8200~8202 TCP which
IP address address
provides
the data
parsing
service.
SingleTraf
ficService
process
port,
NCE server NCE server IP which is
IP address address used to
process
traffic-
related
services.
WhatIfAn
alyseServi
ce process
port,
NCE server Any port NCE server 11400 TCP which
IP address address
provides
the what-
if analysis
service.
The port
used by
the karaf
process
provides
the service
NCE server Any port NCE server 19128 TCP for
IP address address
message
transfer or
communic
ation
among
nodes.
Jetty
listening
port in
DTPServi
NCE server NCE server IP ce
IP address address process,
providing
https
access
service.
The port
used by
the
SMPMQS
ervice
process
provides
NCE server Any port NCE server TCP the
SMPMana
gerService
service for
data
transfer in
SSL
mode.
NCE server NCE server IP rpc cluster

IP address address port
The port
used by
the
NMQZoo
keeperSer
vice
NCE server Any port NCE server 2185 TCP process
IP address address
provides
the
election
service for
kafka
service
The port
used by
the
NMQZoo
keeperSer
vice
NCE server Any port NCE server 3878 TCP process
IP address address
provides
the
election
service for
zookeeper
service.
The port
used by
the
NMQZoo
keeperSer
vice
process
IP address address the
communic
ation
service for
zookeeper
leader and
follower
node.
The port
NCE server NCE server IP used by
IP address address mczkapp
process.
The port
NCE server NCE server IP used by
IP address address mczkapp
process.
The
ODAEAc
cessPoint
Service
listening
port is
used to
detect the
NCE server Any port NCE server 26404 TCP survival
IP address address
status of
the
heartbeat
managem
ent port in
a multi-
plane
scenario.
used by
the BGP
Service
process
provides
the
internal
NCE server Any port NCE server 7777 UDP connectio
IP address address
n service
for
componen
t
communic
ation in
UDP
used by
the IPTE
Service
process
provides
the
internal
IP address address
n service
for
componen
t
communic
ation in
UDP
The port
used by
the BGP
Service
process
provides
Restful
service for
componen
ts in
HTTP(S)
mode.
The port
used by
the IPTE
Service
process
provides
Restful
service for
componen
ts in
HTTP(S)
mode.
This port
is an open
port for
NetconfCl
ientServic
e
(correspon
ding to the
NCE server NCE server IP process
IP address address name
NetconfCl
ientServic
e). This
service
provides
Http 2.0
functional
ity.
used by
the PCE
Service
process
provides
the
internal
IP address address
n service
for
componen
t
communic
ation in
UDP
used by
the PCEP
Service
process
provides
the
internal
IP address address
n service
for
componen
t
communic
ation in
UDP
The port
used by
the
TCClientS
ervice
process
provides
communic
NCE server NCE server IP 17100~1710 ation
IP address address 1 between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
ACTServi
ce process
provides
communic
ation
NCE server Any port NCE server TCP between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCMwRe
sourceSer
vice
process
provides
communic
NCE server Any port NCE server TCP ation
between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCMwEli
neService
process
provides
communic
the
primary
and
backup
service
instances
in (SSL)
mode.
Transport,
TCP port
on behalf
of the
communic
NCE server Any port NCE server 9401 TCP ation port,
IP address address
that is,
external
access
port of
ES.
The port
used by
the
TCAlgorit
hmService
process
provides
communic
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCSDHSe
rvice
process
provides
communic
NCE server NCE server IP ation
NCE server Any port NCE server 17110~17111 TCP
IP address address between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCETHSe
rvice
process
provides
communic
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCNRAS
ervice
process
provides
communic
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
is opened
for
ODAEAc
cessPoint
Service(co
rrespondin
g proccess
NCE server NCE server IP name is
IP address address odaeacces
spointserv
ice), and
is used to
receive
the
reported
performan
ce data.
The port
is opened
for
TrafficCol
lectorServ
ice(corres
ponding
proccess
name is
NCE server Any port NCE server 13816 TCP trafficcoll
IP address address
ectorservi
ce), and is
used to
receive
the
inventory
request of
the
collector.
The port
is opened
for
SBIBridge
Service(co
rrespondin
g proccess
name is
NCE server NCE server IP sbibridges
IP address address ervice),
and is
used to
receive
the
collection
configurat
ion
request.
ProtoInfS
ervice
process
port,
NCE server NCE server IP which
the
protocol
restoration
service.
SingleSim
Service
process
port,
NCE server Any port NCE server 8700~8701 TCP which
IP address address
provides
the
simulation
service.
By
listening
this port,
DpiHwSta
NCE server NCE server IP ndardServ
IP address address ice can
receive
data from
MqttServi
ce.
Heartbeat
NCE server NCE server IP link
IP address address listening
port.
Data
port
Port
30087 is
open by
the
managem
ent plane
NCE server Any port NCE server 30087 UDP and is
IP address address
used to
send alerts
to the
product
alert
service.
The
OpenEMS
ervice
process
routedrpc
port
provides
the
routedrpc
NCE server NCE server IP service.
IP address address Used to
communic
ate across
componen
ts in
standalone
or
clustered
deployme
nt mode.
Port for
marine
NE
managem
ent
processes.
This port
is used for
communic
NCE server Any port NCE server 11113~11114 TCP ation
IP address address
between
NEs and
the Web-
Nemgr
and
ASON
managem
ent
process.
Port for
transport
NE
managem
ent
processes.
This port
is used for
communic
NCE server Any port NCE server 11001~11112 TCP ation
IP address address
between
NEs and
the Web-
Nemgr
and
ASON
managem
ent
process.
Port for
transport
NE
managem
ent
processes.
This port
is used for
communic
NCE server Any port NCE server 13331 TCP ation
IP address address
between
NEs and
the Web-
Nemgr
and
ASON
managem
ent
process.
Listening Port
Encryption Special
Configurable Authentication Mode Version
Mode Scenario
(Y/N)
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
Not Concerning User Name/Password SSH None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
No None None
No None None
No None None
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
In
distributed
scenarios,
this port is
used for
NCEV1R18C
No Digital certificate (one-way) SSL/TLS application
00 and later
nodes to
communica
te with
manageme
nt nodes.
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later

No None None
No None None
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
No None None
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
This port is
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
Yes Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
Distributed
NCEV1R18C access
scenario
Distributed
NCEV1R18C access
scenario
NCEV1R18C
00 and later
Used in
00 and later HA
scenarios.
Used in
00 and later HA
scenarios.
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
This port is
used for
heartbeat
communica
tion
NCEV1R18C
No Digital certificate (two-way) SSL/TLS between
10 and later
two
clusters in
remote
disaster
recovery.
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
Yes Digital certificate (two-way) HTTPS None
10 and later
The port is
used to
transfer
data in an
upgrade
Only
scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C
he port is
10
automatical
ly disabled
after
migrating
data.
NCEV1R18C
10 and later
NCEV1R18C
10 and later
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
10 automatical
ly disabled
after
migrating
data.
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
This port is
only
applies to
NCEV1R18C scenarios
10 and later where
NCE-super
is
deployed.
NCEV1R18C
No None None None
10 and later
NCEV1R18C
No None None None
10 and later
NCEV1R18C
10 and later
NCEV1R18C None
10 and later
NCEV1R18C
10 and later
NCEV1R18C
No None None None
10 and later
NCEV1R18C
No None None None
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
It is
applicable
only to the
versions from
NCEV1R18C
00 to
NCEV1R18C
10.
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
10 and later
Used in
10 and later HA
scenarios.
Used in
10 and later HA
scenarios.
NCEV1R18C
00 and later
NCEV1R18C
10 and later
NCEV1R18C
10 and later
Digital certificate (two-way);User NCEV1R18C

No SSL/TLS None
Digital certificate (two-way);User NCEV1R18C

No SSL/TLS None
Compone Configuration File and
nt Parameter
NCE- /
NCE- /
NCE- /
sight ice/tools/zookeeper/config
NwDataSync NwDataSync IP-Crystal None None
NCE-
UtrafficBasicService utrafficbasicservice NetworkIn None None
sight
NCE-
DisasterRecoveryService DisasterRecoveryService NetworkIn None None
sight
NCE-
sight
NCE-
UtrafficBasicService UtrafficBasicService NetworkIn None None
sight
NCE-
TrafficCollectorService TrafficCollectorService NetworkIn None None
sight
NCE-
sight
CloudSOP-
DHCP dhcpd None None
UniEP
CloudSOP-
TFTP tftpd None None
UniEP
CloudSOP-
DHCP dhcpd None None
UniEP
/
CloudSOP-
ProductMonitorAgent productmonitoragent opt/oss/manager/apps/ProductMonitor None
UniEP
Agent/etc/mcagent.conf/listen_port
/
CloudSOP-
DRMgrService drmgrservice opt/oss/manager/apps/DRMgrService/ None
UniEP
etc/ssl/manifest.json/port
CloudSOP-
UniEPService zookeeperapp None None
UniEP
CloudSOP-
UniEP
CloudSOP-
UniEP
CloudSOP-
UniEPService redis-server None None
UniEP
CloudSOP-
UniEP
CloudSOP-
UniEP
CloudSOP-
UniEPService mysqld/gaussdb/zengine None None
UniEP
CloudSOP-
UniEPService mysqld/gaussdb/zengine None None
UniEP
CloudSOP-
DBHASwitchService switchmgrapp None None
UniEP
CloudSOP-
DeployAgent deployagent None None
UniEP
CloudSOP- nPorts
UniEPService All None
ProductMonitorAgent/service/etc/insta
ll/default_value.json/IRListenPorts
CloudSOP- nPorts
CloudSOP-
MCBusService mcir None None
UniEP
CloudSOP-
MCBusService mcir None None
UniEP
CloudSOP-
ServiceCenter sc None None
UniEP
CloudSOP-
Etcd cse-etcd None None
UniEP
CloudSOP-
Etcd cse-etcd None None
UniEP
NCE-T
EtcdService etcd control None None
domain
NCE-T
EtcdService etcd control None None
domain
NCE-T
DmqService kafka control None None
domain
NCE-T
DmqService zookeeper control None None
domain
NCE-IP
ACService karaf control configuration/initial/akka.conf None
domain
APIManager minapigatewayservice CloudSOP None None
APIManager nats CloudSOP None None

DriverFramework keepalived CloudSOP None None

DriverFramework keepalived CloudSOP None None
ODRS odaemessagequeueservice CloudSOP None None
iMAPCommon emservice CloudSOP None None
iMAPCommon mrbservice CloudSOP None None

iMAPCommon syslogcollectorservice CloudSOP None None
iMAPCommon systemservice CloudSOP None None
iMAPCommon toposervice CloudSOP None None
iMAPCommon itmservice CloudSOP None None
iMAPFBB TrapReceiver CloudSOP None None

ODAE odaeolapagentservice CloudSOP None None

Configuration file:
<Installation directory>/product
name/apps/ODAEDBLoaderService/et
ODAEDBLoaderService odaedbloaderservice CloudSOP None
c/odae/loader.properties
Configuration items:
gds.port: gds port
ODAE odaesparkdispservice CloudSOP None None

NCE-T
/opt/oss/envs/Product-DmqService/
DmqService zookeeper control None
{time-shot}/zookeeper/conf/zoo.cfg
domain
NCE-T CloudPCEOneTrack\codej\TSDNDriv
TSDNDriverService trdriver control erService\deployment\src\main\release None
domain \pub\app_define.json
Configuration item processes/ir-{0}-

{0}/IR in <Installation
BusService ir CloudSOP None
directory>/manager/apps/BusService/e
tc/sysconf/BusService-{version}.json
HFSFileAgent nginx AC-BP None None

CloudSOP- nPorts
Configuration item listen in

MessagingLBService msglbsrv CloudSOP PaaS port
{tenant}/apps/MessagingLBService/ng
inx/conf/kafka/server.conf
Configuration items https.port and

huaweimq.listen.ip in <Installation
directory>/
MessagingService msgsrv CloudSOP PaaS Port
{tenant}/apps/MessagingService/kafka
-rest/etc/kafka-rest/kafka-
rest.properties
Configuration item listeners in
MessagingBrokeService msgbrksrv CloudSOP {tenant}/apps/MessagingBrokeService PaaS Port
/kafka_{version}/config/server.propert
ies
Configuration item
link/ippair/node/port in the
directory>/Product
name/apps/OMMHAService/module/h
async/conf/hasync.xml
Configuration item ommha.syncPort in
the configuration file <Installation
directory>/Product
name/apps/OMMHAService/envs/*.pr
operties
Configuration item
"processes":"OMMSyncPort" in the
directory>/Product
name/apps/OMMHAService/etc/sysco
nf/OMMHAService-*.json
Configuration item
"env":"stage":"config":"ommha.syncP
OMMHAService ommha CloudSOP PaaS port
ort" in the configuration file
<Installation directory>/Product
nf/deployment_env.json
Configuration item
"parameters":"ommha.syncPort":"defa
ult" in the configuration file
name/apps/OMMHAService/pub/app_
define.json
Configuration item
"processes":"protocols":"OMMSyncP
ort" in the configuration file
define.json
Configuration item
"processes":"protocols":"OMMBindin
g" in the configuration fi
Configuration item
link/ippair/node/port in the
directory>/Product
name/apps/OMMHAService/module/h
aarb/conf/haarb.xml
Configuration item
ommha.heartbeatPort in the
directory>/Product
name/apps/OMMHAService/envs/*.pr
operties
Configuration item
processes:OMMHBPort in the
directory>/Product
nf/OMMHAService-*.json
OMMHAService ommha CloudSOP PaaS Port
Configuration item
env:stage:config:ommha.heartbeatPort
in the configuration file <Installation
directory>/Product
nf/deployment_env.json
Configuration item
"parameters":"ommha.heartbeatPort":"
default" in the configuration file
define.json
Configuration item
"processes":"protocols":"OMMHBPor
t" in the configuration file
define.json
/
opt/oss/manager/apps/MCZKService/u
pgrade/zoo.cfg/clientPort
CloudSOP-
MCZKService mczkapp / None
UniEP
opt/oss/manager/apps/MCZKService/p
ub/app_define.json/parameters/MCZK
Service.PortList/default
/
CloudSOP- opt/oss/manager/apps/OMMHAServic
OMMHAService ommha None
UniEP e/module/haarb/conf/haarb.xml/ippair-
>node->port
/
UniEP e/module/hasync/conf/hasync.xml/ippa
ir->link->ippair->port
ODRS invmessagequeueservice CloudSOP None None
NCE-T
DBSVRACTSYNC\DBSV
ACTService control None None
RACTASYNC
domain
APIManager nats CloudSOP None None
NCE-T
DmqService zookeeper control None None
domain
VIPService VIPService AC-BP VIPService/XXXXX/pub/app_define.j None
son
DRService DRService AC-BP None None
DRService DRService AC-BP None None
arbitration-etcd arbitration-etcd AC-BP None None
arbitration-etcd arbitration-etcd AC-BP None None

arbitration-monitor arbitration-monitor AC-BP None None
DTPService DTPService AC-BP None None
db-migrate-service gaussdb AC-BP None None

$
OMPubService OMPubService AC-BP {APP_ROOT}/controller/configuratio None
n/initial/akka.conf
$
NorthboundCommunicatio NorthboundCommunicatio
AC-BP {APP_ROOT}/controller/configuratio None
nService nService
n/initial/akka.conf



NetconfClientService NetconfClientService AC-BP None None
ACMenu ACMenuService AC-BP ACMenuService/{time- None
shot}/controller/configuration/initial
NorthboundCommunicatio NorthboundCommunicatio $
AC-BP None
nService nService {APP_ROOT}/controller/etc/jetty.xml
$
OMPubService OMPubService AC-BP None
{APP_ROOT}/controller/etc/jetty.xml
NCE-FAN
LHNodeJSService LHNodeJSService manageme None None
nt domain
/
opt/oss/NCECOMMONE/apps/DmqK
DmqKafkaService DmqKafkaService AC-BP None
afkaService/tools/kafka/config
listeners
$
{APP_ROOT}/etc/nginx/conf/nginx_c
NCE- ross.conf
U2kProxyService U2kProxyCross None
Common listen $
(LOCALHOST_FLOATSERVERNA
ME):13161;
$APP_ROOT/etc/nginx/conf/nginx_p
ms.conf
listen $
U2kProxyService U2kProxyPms PMS None
(LOCALHOST_FLOATSERVERNA
ME):13170;
listen 127.0.0.1:13170;
/opt/oss/envs/Product-EtcdService/
{time-
shot}/conf/etcd_server.properties/adve
rtise_client_urls
EtcdService Etcd AC-BP None
{time-
shot}/conf/etcd_server.properties/liste
n_client_urls
{time-
shot}/conf/etcd_server.properties/initia
l_advertise_peer_url
{time-
EtcdService Etcd AC-BP None
shot}/conf/etcd_server.properties/liste
n_peer_urls
{time-
shot}/conf/etcd_server.properties/initia
l_cluster
UIBackend UIBackend IP-Crystal None None
NwDataSync NwDataSync IP-Crystal None None

UIService UIService IP-Crystal None None
ParseInfService ParseInfService IP-Crystal None None
SingleParseService SingleParseService IP-Crystal None None
SingleTrafficService SingleTrafficService IP-Crystal None None
WhatIfAnalyseService WhatIfAnalyseService IP-Crystal None None

NetconfServerService NetconfServerService AC-BP None None
DTPService DTPService AC-BP ${APP_ROOT}/pub/app_define.json None
NCE-
SMPMQService SMPMQService None None
Common
FANSouthService/
FAN-South FAN-South FAN-South {time_shot}/controller/configuration/i None
nitial/akka.conf
RPC_CLUSTER_PORT
/var/share/oss/NCECOMMONE/NMQ
NMQZookeeperService NMQZookeeperService AC-BP None
ZookeeperService/conf/zoo.cfg
clientPort
/
NMQZookeeperService NMQZookeeperService AC-BP var/share/oss/NCECOMMONE/NMQ None
ZookeeperService/conf server.x
NMQZookeeperService NMQZookeeperService AC-BP /var/share/oss/NCECOMMONE/NMQ None

ZookeeperService/conf server.x
<OSS_ROOT>/manager/apps/MCZK
Service/upgrade/zoo.cfg config item:
server.0 server.1 and server.2
CloudSOP-
MCZKService mczkapp <OSS_ROOT>/manager/apps/MCZK None
UniEP
Service/pub/app_define.json config
item:“""parameters"":""ZookeeperSer
vice.PortList"":""default""”
<OSS_ROOT>/manager/apps/MCZK
Service/upgrade/zoo.cfg config item:
server.0 server.1 and server.2
CloudSOP- <OSS_ROOT>/manager/apps/MCZK
MCZKService mczkapp None
UniEP Service/pub/app_define.json config
item:“""""parameters"""":""""Zookeep
erService.PortList"""":""""default""""”
"
/etc/conf/config.properties
ODAE odaeaccesspointservice CloudSOP None
lvs_manager_port
NCE-IP
BgpService cloudbgp control None None
domain
NCE-IP
IPTE IPTE control None None
domain
NCE-IP
BGP BGP control None None
domain
NCE-IP
IPTE IPTE control None None
domain
$
NetconfClientService NetconfClientService AC-BP None
{APP_ROOT}/controller/etc/jetty.xml
NCE-IP
PCEMicroService PCE control None None
domain
NCE-IP
PcepService PCEP control None None
domain
NCE-T /
TCClientService TCClientService control opt/oss/NCE/apps/TCClientService/pu None
domain b/app_define.json
NCE-T /
ACTService ACTService control opt/oss/NCE/apps/ACTService/pub/ap None
domain p_define.json
NCE-T /
TCMwResourceService TCMwResourceService control opt/oss/NCE/apps/TCMwResourceSer None
domain vice/pub/app_define.json
NCE-T /
TCMwElineService TCMwElineService control opt/oss/NCE/apps/TCMwElineService None
domain /pub/app_define.json
/
DPAElasticSearchService DPAElasticSearchService CloudSOP opt/oss/Product/apps/DPAElasticSearc None
hService/es/config/elasticsearch.yml
NCE-T /
TCAlgorithmService TCAlgorithmService control opt/oss/NCE/apps/TCAlgorithmServic None
domain e/pub/app_define.json
NCE-T /
TCSDHService TCSDHService control opt/oss/NCE/apps/TCSDHService/pub None
domain /app_define.json
/
NCE-T
opt/oss/NCE/apps/TCETHService/pub
TCETHService TCETHService control None
/app_define.json
domain
NCE-T /
TCNRAService TCNRAService control opt/oss/NCE/apps/TCNRAService/pub None
domain /app_define.json
NCE-
ODAEAccessPointService odaeaccesspointservice NetworkIn None None
sight
NCE-
TrafficCollectorService trafficcollectorservice NetworkIn None None
sight
NCE-
SBIBridgeService sbibridgeservice NetworkIn None None
sight
ProtoInfService ProtoInfService IP-Crystal None None
SingleSimService SingleSimService IP-Crystal None None

NCE-FAN
DpiHwStandardService dpihwstandardservice manageme None None
nt domain
/
UniEP e/module/haarb/conf/haarb.xml/ippair-
>node->port
/
UniEP e/module/hasync/conf/hasync.xml/ippa
ir->link->ippair->port
The
engrnotifys
/ ervice.cfg
opt/oss/manager/var/etc/engrnotifyserv file is not
CloudSOP- ice/engrnotifyservice.cfg/NBI_IP available
UniEPService uniepservice
UniEP / by default
opt/oss/manager/var/etc/engrnotifyserv and needs
ice/engrnotifyservice.cfg/NBI_PORT to be
customized
.
NCE-IP
OpenEMService/
OpenEMService OpenEMService manageme None
{time_shot}/controller/configuration/i
nt domain
nitial/akka.conf port
NCE-T
NemgrMarineService nemgr_marine manageme None None
nt domain
NCE-T
NemgrTransService nemgr_trans manageme None None
nt domain
NCE-T
NemgrV8transService nesvc_v8trans manageme None None
nt domain
Source Source IP Source Destinatio Destination Destination Port
Protocol
Device Address Port n Device IP Address Port Description
The client proxy
service listens to
the port and
Client IP Client IP
Client Any port Client 31942 TCP provides the
address address
ability to
communicate with
the portal.
Client IP Client IP Communicate
Client Any port Client 34455 TCP
address address with the client.
The port used by
the
sqmprobemgrserv
NEs NCE server 12208 TCP ice process
address 535 address
provides the
management
service for prober.
NTP is a standard
protocol without
any authentication
mechanism. This
port is used to
synchronize
clocks of all other
clients. The NTP
server
synchronizes the
clock of the local
system with a
public NTP server
NTP server NCE server IP and then functions
NTP server Any port NCE server 123 UDP
IP address address as the time host to
provide services.
In this way, clocks
of all clients on
the local network
can be
synchronized.
This ensures that
the time of each
Agent application
node is the same.
This port is an
NTP listening
port.
SSH service port.
VMware Log in to the
VMware vSphere ESXi server server through
Any port ESXi server 22 TCP
vSphere clients clients IP IP address SSH to perform
address maintenance
operations.
VMware
VMware vSphere ESXi server
Any port ESXi server 53 TCP DNS client
vSphere clients clients IP IP address
address
VMware vSphere Web
VMware vSphere ESXi server Client to ESXi
vSphere clients clients IP IP address Host Management
address Connection
VMware
VMware vSphere ESXi server vCenter Server
Any port ESXi server 902 TCP,UDP
vSphere clients clients IP IP address Agent port
address
The port that is

open for the alarm
module (the
corresponding
process is java).
Receive alarms
Hardware through the
Hardware NCE server IP
Server IP Any port NCE server 30085 UDP connection
Server address
address between the alarm
module and the
E9000 server/disk
array/PCServer
server, using the
SNMPv3
protocol.
Welcome to the
VMware page, which
VMware vSphere ESXi server contains
vSphere clients clients IP IP address download links
address for different
interfaces.
VMware Traffic between
VMware vSphere ESXi server hosts for vSphere
vSphere clients clients IP IP address Fault Tolerance
address (FT).
VMware Traffic between
VMware vSphere ESXi server hosts for vSphere
vSphere clients clients IP IP address Fault Tolerance
address (FT).
Port used for
receiving callback
requests
NCE server NCE server IP forwarded by
IP address address northbound APIs
through
MinAPIGatewayS
ervice.
Port occupied by
Spark (Driver) for
Third-party
Third-party NCE server IP Spark driver
server IP Any port NCE server 22600~22899 TCP
server address listening, Spark
address
UI, and Spark
shuffle operations.
Third-party
Third-party NCE server IP This port is used
server address for reporting data.
address
NCE server NCE server IP Port invoked cross

IP address address regions.
NCE acts as a
client and does
not involve
ActiveDirecto
ActiveDirect listening. The port
ry
NCE server ory Specified port provided by the
NCE server Any port authentication TCP
IP address authenticatio on the server third-party AD
server IP
n server server for AD
address
authentication.
The port default is
636
NCE acts as a
client and does
not involve
RADIUS listening. The port
RADIUS
NCE server authentication Specified port provided by the
NCE server Any port authenticatio UDP
IP address server IP on the server third-party Radius
n server
address server for Radius
authentication.
The default port is
1812.
NCEV1R18C
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
00 and later
Used in a
distributed
scenario,
this
No None describes
the usage
scenario of
ntp as a
server.
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
NCEV1R18C
00 and later
This port is
only
applies to
NCEV1R18C scenarios
No Public key SSL/TLS
00 and later where
NCE-super
is
This port is
deployed.
only
applies to
NCEV1R18C scenarios
00 and later where
NCE-super
is
deployed.
NCEV1R18C
00 and later
NCEV1R18C
Yes User Name/Password SSL/TLS None
10 and later
NCEV1R18C
Yes Preshared key None None
10 and later
Configuration File and
Service Process Component Remarks
Parameter
NCE- webproxy\proxyService\jetty.propertie
webswing None None
Common s
NCE-
webproxy None None None
Common
NCE-
Analyzer
SQMProbemgrService sqmprobemgrservice NetworkInsigh None
Node
t
0.0.0.0
Standard
NTP
service
port 123
cannot be
bound to
fixed IP
addresses.
To secure
the system,
use OS-
provided
iptables to
set an IP
address
whitelist.
Only the IP
CloudSOP- addresses
NTP ntpd None
UniEP in this
whitelist
can access
port 123 in
the NTP
service
network
segment.If
the
network
segment of
the NTP
service
changes,
modify the
iptables
settings
accordingly
.
SSH sshd NCE-Engineer None None
DNS dns NCE-Engineer None None
ESXi rhttpproxy NCE-Engineer None None
ESXi vpxd NCE-Engineer None None
CloudSOP-
UniEPService uniepservice None None
UniEP
ESXi rhttpproxy NCE-Engineer None None
ESXi vherdrunner NCE-Engineer None None
ESXi vherdrunner NCE-Engineer None None
APINotifyProxyService apinotifyproxyservice CloudSOP None None

ODAE odaesparkdispservice CloudSOP None None
ODAE fabric CloudSOP None None
Configuration item
processes/ber/protocols/BER in
{tenant}/apps/BackendERService/pub/
app_define.json
BackendERService ber CloudSOP PaaS port
Configuration item processes/ber-{0}-
{0}/BER in <Installation directory>/
{tenant}/apps/BackendERService/etc/s
ysconf/BackendERService-
{version}.json
AuthMgMt AuthService AC-BP None None
AuthMgMt AuthService AC-BP None None

454553617.xlsx 文档密级
Listening
Destinati Destinati Port Port Authenti
Source Source IP Source Destinati
on on IP Protocol Descripti Configur cation
Device Address Port on Port
Device Address on able Mode
The (Y/N)
EasySuite
process
USES port
NCE User
NCE EasySuiteI 19090 to
server IP Any port EasySuite 19090 TCP Yes Name/Pass
server P provide the
address word
EasySuite
service for
use in SSL
mode.
FTP serves
the general
port.
NCE User
NCE EasySuiteI Installation
server IP Any port EasySuite 21 TCP No Name/Pass
server P files are
address word
downloade
d through
FTP.
When the
network
installs the
NCE
NCE EasySuiteI operating
server IP Any port EasySuite 69 UDP No None
server P system, use
address
the TFTP
transfer
file.
When the
operating
system is
installed in
NCE a network
NCE EasySuiteI
server IP Any port EasySuite 67 UDP mode, the No None
server P
address DHCP
service is
needed to
allocate the
IP address.
When the
operating
system is
installed in
a network
mode, the
DHCP
NCE
NCE EasySuiteI service is
server IP Any port EasySuite 68 UDP No None
server P needed to
address
allocate the
IP address,
and 68 is
the DHCP
service
transmissio
n port.
01/07/2020 华为保密信息,未经授权禁止扩散第335页，共346页

Configur
ation File
Encryptio Special Compone
Version Service Process and Remarks
n Mode Scenario nt
Paramete
r
easysuite\e
asysuite\ru
nsslserver.
NCEV1R1
NCE- bat set
HTTPS 8C00 and None EasySuite EasySuite None
Engineer HOST=127
later
.0.0.1 set
PORT=190
90.
NCEV1R1
NCE-
None 8C00 and None EasySuite FTP None None
Engineer
later
NCEV1R1
NCE-
None 8C00 and None EasySuite TFTP None None
Engineer
later
NCEV1R1
NCE-
None 8C00 and None EasySuite DHCP None None
Engineer
later
NCEV1R1
NCE-
None 8C00 and None EasySuite DHCP None None
Engineer
later

Listening
Destinati Destinati Port Port Authenti
Source Source IP Source Destinati
on on IP Protocol Descripti Configur cation
Device Address Port on Port
Device Address on able Mode
Port that (Y/N)
the
SNMPv1/S
PerfAlarm
NCE SNMP NMPv2c:
NCE SNMP MgmtSeric
server IP 15555 server IP 162 UDP No Communit
server server e binds to
address address y name,
send trap to
SNMPv3
3rd party
server
Port for
communica
ting with
an LDAP
server to
query and
check user
LDAP
NCE LDAP Specified informatio User
NCE authenticati Not
server IP Any port authenticati port on the TCP n. The Name/Pass
server on server Concerning
address on server server LDAP word
IP address
server
determines
whether to
use the
SSL
encryption
mode.
Port for
communica
ting with
RADIUS an
NCE RADIUS Specified User
NCE authenticati RADIUS Not
server IP Any port authenticati port on the UDP Name/Pass
server on server server to Concerning
address on server server word
IP address query and
check user
informatio
n.
Port used
by the
SMLogLic
NCE Syslog Specified Service to Digital
NCE Syslog Not
server IP Any port server IP port on the TCP,UDP forward certificate
server server Concerning
address address server CloudSOP (two-way)
logs to the
listening
port.

NCE acts
as a client
and does
not involve
listening.
ActiveDire The port
ActiveDire
NCE ctory Specified provided User
NCE ctory
server IP Any port authenticati port on the TCP by the Yes Name/Pass
server authenticati
address on server server third-party word
on server
IP address AD server
for AD
authenticati
on. The
port default
is 389
The port is
opened for
snmp agent
service,
which
process
name is
Northboun
dCommuni
cationServi
ce. The
service
supported
NCE SNMP Specified the Token;User
NCE SNMP
server IP 1161 server IP port on the UDP function of No Name/Pass
server server
address address server reporting word
trap and
the data
source the
third
devices are
insterested
in, so the
third
device can
receive trap
or acquire
the data
they want.

northbound
distributed
message
bus
service.
Service
scenario: 1.
The third-
party
server is a
Kafka
client, and
performs
business
interaction
with the
north-
Third-party NCE facing Digital
Third-party NCE
server IP Any port server IP 9095 TCP Kafka No certificate
server server
address address server (two-way)
inside the
NCE. 2.
The NCE
internal
north-
facing
Kafka
client
performs
business
interaction
with the
north
Kafka
server.
(The
source
This port is
an open
port for the
Northboun
dCommuni
cationServi
ce. This
service
provides a
NCE Third-party Specified northbound Digital
NCE Third-party
server IP Any port server IP port on the TCP message Yes certificate
server server
address address server queue data (two-way)
transfer
function
through
which
clients can
access
third-party
Kafka
servers.

authenticati
on
mechanism
. This port
is used to
synchroniz
e clocks of
all other
clients. The
NTP server
synchroniz
es the
clock of
the local
system
with a
public NTP None:
server and standard
NCE
NCE NTP server then protocol
server IP Any port NTP server 123 UDP No
server IP address functions (applicatio
address
as the time n layer
host to protocol)
provide
services. In
this way,
clocks of
all clients
on the local
network
can be
synchroniz
ed. This
ensures
that the
time of
each Agent
application
node is the
Report
syslog
messages
to the
NCE Third-party ICBC
NCE Third-party
server IP Any port server IP 514 UDP syslog No None
server server
address address server.
Don's
support
receive
data.

Configur
ation File
Encryptio Special Compone
Version Service Process and Remarks
n Mode Scenario nt
Paramete
r
SNMPV1/
NCEV1R1 PerfAlarm PerfAlarm NCE- Source
V2c: none;
8C00 and None MgmtServi MgmtServi NetworkIn None Node:
SNMPV3:
later ce ce sight Analyzer
encryption
userdb.US
ER_SERVI
NCEV1R1
smloglicser CE_CONF
SSL/TLS 8C00 and None SMLogLic CloudSOP None
vice IGURATI
later
ON.CONF
IG
userdb.US
ER_SERVI
NCEV1R1
smloglicser CE_CONF
None 8C00 and None SMLogLic CloudSOP None
vice IGURATI
later
ON.CONF
IG
syslogdb.S
YSLOG_S
NCEV1R1
smloglicser ERVER.M
SSL/TLS 8C00 and None SMLogLic CloudSOP None
vice ASTERPO
later
RT/SLAVE
PORT

NCEV1R1
AuthServic
None 8C10 and None AuthMgMt AC-BP None None
e
later
Northboun Northboun
NCEV1R1
dCommuni dCommuni
SNMPV3 8C10 and None AC-BP None None
cationServi cationServi
later
ce ce

/
opt/oss/NC
ECOMMO
NCEV1R1
NMQKafk NMQKafk NE/apps/N
SSL/TLS 8C10 and None AC-BP None
aService aService MQKafkaS
later
ervice/tools
/kafka/conf
ig listeners
Northboun Northboun
NCEV1R1
dCommuni dCommuni
SSL/TLS 8C10 and None AC-BP None None
cationServi cationServi
later
ce ce

0.0.0.0
Standard
NTP
service
port 123
cannot be
bound to
fixed IP
addresses.
To secure
the system,
use OS-
provided
iptables to
set an IP
Used in a address
distributed whitelist.
scenario, Only the IP
NCEV1R1
where ntp CloudSOP- addresses
None 8C00 and NTP ntpd None
is used as a UniEP in this
later
client whitelist
usage can access
scenario. port 123 in
the NTP
service
network
segment.If
the
network
segment of
the NTP
service
changes,
modify the
iptables
settings
accordingly
.
NCEV1R1 TrafficOpti TrafficOpti NCE-IP

None 8C10 and None mizeServic mizeServic control None None
later e e domain

454553617.xlsx
The internal ports used by VMware are as follows:
1. For the list of internal ports that must be opened for the SRM and VR, see http://kb.vmware.com/kb/1009562.
2. For the list of internal ports that must be opened for the VMware, see http://kb.vmware.com/kb/1012382.
454553617.xlsx
om/kb/1009562.
kb/1012382.

NCE V100R018C10 Communication Port Matrix 01-C

Caricato da

Informazioni sul documento

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

NCE V100R018C10 Communication Port Matrix 01-C

Caricato da

Copyright:

Formati disponibili

Network Cloud Engine

HUAWEI TECHNOLOGIES CO., LTD.

Trademarks and Permissions

Huawei Technologies Co., Ltd.

their respective holders.

etween Huawei and the customer. All or

been made in the preparation of this

Authentication mode of the destination port, for example, authentication using th

Version Version of the destination device.

Huawei Proprietary and Confidential

Huawei Proprietary and Confidential

This document is intended for:

Name of the source device.

Version of the destination device.

Huawei Proprietary and Confidential

Huawei Proprietary and Confidential

NE IP 49152~555 NCE server IP

NE IP 49152~555 NCE server IP

NCE server 15601~156

NCE server 15201~156

NCE server 14901~152

NCE server 31950~319

NCE server 14001~159

NCE server Specified port

NE IP NCE server IP Specified port

NE IP NCE server IP Specified port

NCE server Specified port

NCE server 14001~159

NCE server 35600~356

NCE server 35600~356

The port provides the service for NCEV1R18C

The port provides the service for NCEV1R18C

Port that the RTPCollector process SNMPV1/V

The port is used by the

PCEP session listening port, used NCEV1R18C

Indicates the management

Listening port for the ftpd process. NCEV1R18C

Telnet protocol port is used for

Port for the STelnet server to NCEV1R18C

The port is an open port for

The port is an open port for

Port for transport GNEs. This port

Port for transport NEs. This port is

For the TL1 NE, port on the NE

Telnet protocol port which ne

Port for the STelnet server to

Telnet protocol port which ne

Port for the STelnet server to

Telnet protocol port which ne

Port for the STelnet server to

Telnet protocol port which ne

NetConf protocol port. This port

NetConf protocol port. This port

None SFTP SFTP PMS None None

None FTP FTP PMS None None

None FTP FTP PMS None None

OSPF forms IP datagrams

GRE forms IP datagrams

SQMProbe sqmprobec NCE-

Log in to the NCE.

None DrlService drlservice CloudSOP None None

OpenEmSe OpenEmSe The range of sftp server

OpenEMSe OpenEMSe The range of server port is

The function for