Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
V100R018C10
Communication Matrix
Issue 01
Date 2018/10/31
All other trademarks and trade names mentioned in this document are the property of their respective holders.
Notice
The purchased products, services and features are stipulated by the contract made between Huawei and the customer. All
part of the products, services and features described in this document may not be within the purchase scope or the usage
scope. Unless otherwise specified in the contract, all statements, information, and recommendations in this document are
provided "AS IS" without warranties, guarantees or representations of any kind, either express or implied.
The information in this document is subject to change without notice. Every effort has been made in the preparation of this
document to ensure accuracy of the contents, but all statements, information, and recommendations in this document do no
constitute a warranty of any kind, express or implied.
Website: http://www.huawei.com
Email: support@huawei.com
ans without prior written consent of
Intended Audience
This document is intended for:
● Network planners
● System engineers
● Field engineers
● Network shift engineers
● Network operators
● Network administrators
Organization
Source Device Name of the source device.
IP address of the source device. This IP address must conform to the product-s
Source IP Address
address naming rules.
Number of the source port or source port number range. For well-known protoco
Source Port common port as the source port. If the value of Source Port is Any, the port num
ranges from 32768 to 65535.
Destination Device Name of the destination device.
IP address of the destination device. This IP address must conform to the produ
Destination IP Address
IP address naming rules.
Number of the destination port or destination port number range. The destinatio
Destination Port provides the listening service. If the value of Destination Port is N/A, the represe
not applicable.
Protocol Protocol (such as TCP, UDP, or SCTP) used at the transport layer.
Port Description Details about the services provided by the destination port.
Listening Port Configurable Whether the destination port can be changed through the GUI or CLI.
Plane to which the destination port belongs, such as the OM plane, control and
Plane
plane, user plane, or shared by all three planes.
Issue Date
10/31/2018
01
Whether the destination port can be changed through the GUI or CLI.
Authentication mode of the destination port, for example, authentication using the
username and password.
Encryption mode of the destination port.
Plane to which the destination port belongs, such as the OM plane, control and signaling
plane, user plane, or shared by all three planes.
Description
This issue is the first official release.
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 20 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 21 TCP
IP address
NE IP NCE server IP
NEs Any port NCE server 7100~7150 TCP
address address
NE IP NCE server IP
NEs N/A NCE server N/A RAW
address address
NE IP NCE server IP
NEs N/A NCE server N/A RAW
address address
NE IP NCE server IP
NEs Any port NCE server 22 TCP
address address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 21 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 5432 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 1400 TCP
IP address
NE IP NCE server IP
NEs Any port NCE server 27300 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 514 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 6514 TCP
address address
NCE server
NCE server 31099 NEs NE IP address 161 UDP
IP address
NCE server
NCE server 31834 NEs NE IP address 161 UDP
IP address
NCE server
NCE server 31835 NEs NE IP address 161 UDP
IP address
NCE server
NCE server 31836 NEs NE IP address 161 UDP
IP address
NE IP NCE server IP
NEs Any port NCE server 162 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 4189 TCP
address address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server 27351~273
NCE server NEs NE IP address 161 UDP
IP address 70
NCE server
NCE server N/A NEs NE IP address N/A ICMP
IP address
NE IP NCE server IP
NEs Any port NCE server 7100~7150 UDP
address address
NE IP NCE server IP
NEs 1840 NCE server 1840 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 40960 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 16632 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 6653 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 10020 TCP
address address
NCE server
NCE server Any port NEs NE IP address 3300 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 3303 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 443 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 8024 TCP
IP address
NE IP NCE server IP
NEs Any port NCE server 179 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 4189 TCP
address address
NCE server
NCE server Any port NEs NE IP address 23 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 1400 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 830 TCP
IP address
NE IP NCE server IP
NEs Any port NCE server 6343 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 27371~27570 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 21 TCP
address address
NCE server
NCE server Any port NEs NE IP address 23 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NE IP NCE server IP
NEs Any port NCE server 40000~50000 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 40000~50000 TCP
address address
NE IP NCE server IP
NEs 1884 NCE server 1884 TCP
address address
NE IP NCE server IP
NEs 9013 NCE server 9013 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 4801 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 9002 UDP
address address
NE IP NCE server IP
NEs Any port NCE server 9017 TCP
address address
NE IP NCE server IP
NEs Any port NCE server 9016 TCP
address address
NCE server
NCE server Any port NEs NE IP address 5432 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 1400 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 3081 TCP
IP address
NCE server
NCE server 13169 NEs NE IP address 161 UDP
IP address
NCE server
NCE server Any port NEs NE IP address 10443 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 23 TCP
IP address
NE IP NCE server IP
NEs 68 NCE server 67 UDP
address address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 23 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 23 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 23 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
NCE server
NCE server Any port NEs NE IP address 22 TCP
IP address
Listening Port Encryptio
Port Description Authentication Mode Version
Configurable (Y/N) n Mode
Port for the SFTP server to
provide secure file transfer NCEV1R18C
Yes User Name/Password SSH
services. Used for collecting NE 00 and later
performance data.
FTP-based port. The NE functions
as the FTP server and the bulk
collector periodically obtains PW NCEV1R18C
No User Name/Password None
performance files from NEs over 00 and later
the FTP protocol through this
port.
FTP-based port. The NE functions
as the FTP server and the bulk
collector periodically obtains PW NCEV1R18C
Not Concerning User Name/Password None
performance files from NEs over 00 and later
the FTP protocol through this
port.
The port is an open port for
UniCollectAgentService, which
provides access to the GRPC data NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS
message function, and the device 10 and later
network element can be reported
through this port.
The protocol used by the
TCDriverService process provides NCEV1R18C
No Preshared key None
the OSPF service for 00 and later
communication to ne.
The protocol used by the
TCDriverService process provides
None: standard protocol NCEV1R18C
the GRE service for No None
(application layer protocol) 00 and later
communication to ne.
NCEV1R18C
netconf service port. Yes User Name/Password SSH
10 and later
default port:161. optional port SNMPv1/SNMPv2c: NCEV1R18C
Yes SNMPV3
range : 1025~65535. Community name, SNMPv3 00 and later
NCEV1R18C
no port Not Concerning None None
00 and later
device will listen on server port,
Digital certificate (two- NCEV1R18C
then controller can connect to Not Concerning SSH
way);User Name/Password 00 and later
device with client port.
The port is an open port for
UniCollectAgentService, which
provides access to the UDP data NCEV1R18C
Yes None None
message function, and the device 00 and later
network element can be reported
through this port.
This port is used by the
OpenEmService process and
provides the SFTP server
service,The range of sftp server NCEV1R18C
No User Name/Password SSH
port is from 1025 to 65535. It is 00 and later
used to provide data consistency
check and difference discovery in
SSH mode.
The protocol used by the
TCDriverService process provides
None: standard protocol NCEV1R18C
the GRE service for No None
(application layer protocol) 00 and later
communication to ne.
NCEV1R18C
NE Netconf listen port. Not Concerning User Name/Password SSH
00 and later
The DCNService process uses a
port to provide a service for
listening to UDP None: standard protocol NCEV1R18C
No None
connections(sFlow) from the (application layer protocol) 10 and later
southbound device to receive
device packets.
The port is an open port for SNMPV1/V
OpenEMService. The service can SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
listen to trap packets reported by Community name, SNMPv3 SNMPV3: 10 and later
the device. encryption
The port is an open port for SNMPv1/SNMPv2c:
OpenEMService, and the service Community name, NCEV1R18C
Yes SNMPV3
can listen to the packets replied by SNMPv3;User 10 and later
the device side through the port. Name/Password
The port used by the
UniCollectAgentService process SNMPV1/V
provides the access to the SNMP SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
Yes
data message function. Used to Community name, SNMPv3 SNMPV3: 10 and later
communicate with devices in the encryption
SNMP data acquisition module.
SNMPV1/V
This port is used for sending or
SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
receiving SNMP packets of NE. No
Community name, SNMPv3 SNMPV3: 00 and later
encryption
The port is the secure port
provided by the NE to the NMS.
NCEV1R18C
The SSL/TLS protocol is running No User Name/Password SSL/TLS
00 and later
at the port. The port is enabled by
default.
SNMPV1/V
This port is used for sending or SNMPv1/SNMPv2c: 2c: none; NCEV1R18C
No
receiving SNMP packets of NE. Community name, SNMPv3 SNMPV3: 00 and later
encryption
Port of security NEs. This port is
Digital certificate (one- NCEV1R18C
used for device maintenance and No HTTPS
way);User Name/Password 00 and later
operation via Web interface.
Port for the STelnet server to
Public key;User NCEV1R18C
provide secure telnet services. No SSH
Name/Password 00 and later
/
UniCollect UniCollect opt/oss/NCE/apps/UniCollectAgentSe
NCE-
None AgentServi AgentServi rvice/conf/template/utraffic_telemetry None
Collector
ce ce _persistent_grpc.json
inputConf.params.port
NCE-
RTPCollect RTPCollect
None NetworkInsig None None
orService orService
ht
NCE-
BulkCollec BulkCollec
None NetworkInsig None None
torService tor_10x
ht
SNMPColl NCE-
SNMPColl
None ectorServic NetworkInsig None None
ector_10x
e ht
NCE-
None vsftpd vsftpd NetworkInsig None None
ht
NCE-
None vsftpd vsftpd NetworkInsig None None
ht
NCE-
None ftp ftp NetworkInsig None None
ht
NCE-
QXCollect QxCollecto
None NetworkInsig None None
orService r_10x
ht
NCE-
QXCollect QxCollecto
None NetworkInsig None None
orService r_10x
ht
iMAPCom syslogcolle
None CloudSOP None None
mon ctorservice
iMAPCom syslogcolle
None CloudSOP None None
mon ctorservice
TopoServic
None toposervice CloudSOP None None
e
EmfGnlDe EmfGnlDe
None CloudSOP None None
vDm vDm
EmfGnlDe EmfGnlDe
None CloudSOP None None
vDm vDm
TrapReceiv
None iMAPFBB CloudSOP None None
er
TrapReceiv
None iMAPFBB CloudSOP None None
er
iMAPCom trapdispatc
None CloudSOP None None
mon herservice
NCE-
None cbb_frame SNMP None None
Common
NCE-T
TCDriverS
None trdriver control None None
ervice
domain
UniCollect
NCE- default port:22, Optional
None netconf AgentServi None
Collector port range:1025~65535.
ce
UniCollect
NCE-
None SNMP AgentServi None None
Collector
ce
UniCollect
NCE-
None Ping AgentServi None None
Collector
ce
NetconfCli NetconfCli
None AC-BP None None
entService entService
/
The UDP protocol has no
UniCollect UniCollect opt/oss/NCE/apps/UniCollectAgentSe
NCE- security authentication and
None AgentServi AgentServi rvice/conf/template/utraffic_telemetry
Collector has a whitelist for the
ce ce _persistent_stream_udp.json
reported device IP.
inputConf.params.port
NCE-T
TCDriverS
None trdriver control None None
ervice
domain
OpenEMSe OpenEMSe
None AC-BP None None
rvice rvice
OpenEMSe OpenEMSe
None AC-BP None None
rvice rvice
OpenEMSe OpenEMSe
None AC-BP None None
rvice rvice
NetconfCli NetconfCli
None AC-BP None None
entService entService
NCE-FAN
None Use this port for HTTP, or
WebSwing BITS NE management None
3303 for HTTPS.
domain
NCE-FAN
None WebSwing BITS NE management None None
domain
NCE-FAN
none
None WebSwing HTTPS management None
domain
NCE-FAN
none
WebSwing OLT NE management None None
domain
NCE-IP
None BGP BGP control None None
domain
NCE-IP
None PCEP PCEP control None None
domain
TransProxy
None transproxy DC None None
Service
TransProxy
None transproxy DC None None
Service
TransProxy
None transproxy DC None None
Service
FANSouth
None FAN-South FAN-South None None
Service
/opt/oss/envs/Product-DCNService/
DCNServic DCNServic {time-
None AC-BP None
e e shot}/controller/configuration/sflow.p
roperties
OpenEMSe OpenEMSe
None AC-BP None None
rvice rvice
/
opt/oss/NCE/apps/UniCollectAgentSe
rvice/conf/agentconf/snmp.xml async-
UniCollect UniCollect
NCE- min-listening-port
None AgentServi AgentServi None
Collector /
ce ce
opt/oss/NCE/apps/UniCollectAgentSe
rvice/conf/agentconf/snmp.xml async-
max-listening-port
NEBackup
MgrServic DCServer;
e;NESoftM NEUpgrad
None DC None None
grService; e;Enpower
EnpowerSe Dm
rvice
TransProxy
None transproxy DC None None
Service
NEBackup
MgrServic DCServer;
e;NESoftM NEUpgrad
None DC None None
grService; e;nelicServ
NELicServ er
ice
NEBackup
MgrServic DCServer;
e;NESoftM NEUpgrad
None DC None None
grService; e;nelicServ
NELicServ er
ice
UniCollect UniCollect
NCE-
None AgentServi AgentServi None None
Collector
ce ce
MqttService\service\src\main\resource
NCE-FAN This port is provided by the
MqttServic s\etc\conf\apps\mqtt\mqtt\mqttd.prope
None mqttservice management Home platform for home
e rties
domain gateways.
TCP_PORT=1884
NCE-T
NemgrTran Qx;TL1;M
None management None None
sService ML
domain
NemgrTran
sService;N nemgr_tran
NCE-T
emgrMarin s;nemgr_m
None management None None
eService;N arine;nesvc
domain
emgrV8tra _v8trans
nsService
NCE-T
EmlPubSer Eml_PubS
None management None None
vice vr
domain
NCE-T
None NE NE management None None
domain
NemgrSec NCE-IP
None urityServic secvpnmgr management None None
e domain
NemgrSec NCE-IP
None urityServic httpd management None None
e domain
NemgrSec NCE-IP
SecurityM
None urityServic management NULL None
grDm
e domain
NemgrSec NCE-IP
SecurityM
None urityServic management NULL None
grDm
e domain
On SUSE Linux,
the IPDcnDM
process actually
listens on port
NCE-IP
13241, but port GcliServic
IPDcnDM management None None
67 must be e
domain
enabled on the
firewall for the
NE.
NCE-IP
NemgrSwit FrameSW
None management None None
chService MgrDm
domain
NCE-IP
NemgrSwit FrameSW
None management None None
chService MgrDm
domain
NCE-IP
NemgrSwit BoxSWMg
None management None None
chService rDm
domain
NCE-IP
NemgrSwit BoxSWMg
None management NULL None
chService rDm
domain
NCE-IP
NemgrRou RouterMgr
None management None None
terService Dm
domain
NCE-IP
NemgrRou RouterMgr
None management None None
terService Dm
domain
NCE-IP
NemgrV8p nemgr_v8p
None management None None
tnService tn
domain
NCE-IP
NemgrVmf Nemgr_vm
None management None None
Service f
domain
Destinatio Port
Source Source IP Source Destinatio Destinatio
n IP Protocol Descrip
Device Address Port n Device n Port
Address tion
This port
is opened
for users
to log in
to the
server in
SSH
mode to
perform
maintena
nce
Client IP NCE server
Client Any port NCE server 22 TCP operation
address IP address
s.
This port
is used
for
transferri
ng files
using
SFTP at
the
managem
ent plane.
This port
is a
listening
port of
the
CloudSO
P-UniEP
web
service
(nginx
process).
Client IP NCE server
Client Any port NCE server 31945 TCP This port
address IP address
is used
for the
managem
ent plane
to access
the
CloudSO
P-UniEP
service in
web
mode.
Listening
port for
the httpd
process.
It
provides
Client IP NCE server HTTP
Client Any port NCE server 8080 TCP
address IP address service
proxy
functions
between
the iMAP
client and
NEs.
Listening
port for
the
DesktopS
ervice.
This
service
provides
the
functions
Client IP NCE server
Client Any port NCE server 31039 TCP of
address IP address
distributi
ng and
processin
g
messages
and is
used for
Java
client
access.
Listening
port for
the
EMServic
Client IP NCE server e service.
Client Any port NCE server 31082 TCP
address IP address It
distribute
s and
processes
events.
Listening
port for
the ftpd
Client IP NCE server process.
Client Any port NCE server 21 TCP
address IP address It
provides
FTP
functions.
It
provides
FTP data
transfer
functions.
The port
is
automatic
ally
enabled
when a
Client IP NCE server 16100~1709 user runs
Client Any port NCE server TCP
address IP address 9 the FTP-
based get
or put
command
to transfer
files in
passive
mode.List
ening
port for
the ftpd
process.
Listening
port for
the
MRBServ
Client IP NCE server ice
Client Any port NCE server 31080 TCP
address IP address service. It
distribute
s and
processes
messages.
Listening
port of
the
Porttrunki
ngService
service
that
provides
Client IP NCE server the proxy
Client Any port NCE server 31035 TCP
address IP address function.
The client
can
access
NEs by
using the
PortTrunk
ingServic
e.
The
Source
Port is
automatic
ally
enabled
when a
user runs
the FTP-
based get
or put
Client IP NCE server
Client Any port NCE server 20 TCP command
address IP address
to transfer
files in
active
mode.Tra
nsmit
port for
the FTPD
process to
send files
in active
mode.
Applicati
Client IP NCE server on service
Client Any port NCE server 31943 TCP
address IP address access
port.
Port
provided
by
FanAppN
BIAgent
Client IP NCE server
Client Any port NCE server 30110 TCP for the
address IP address
mobile
app to
connect
to NCE-
FAN.
Port for
pushing
messages
Client IP NCE server
Client Any port NCE server 30112 TCP to the
address IP address
mobile
app over
SSL.
Log in to
the server
through
SSH to
perform
maintena
nce
operation
Client IP NCE server
Client Any port NCE server 22 TCP s.
address IP address
The
managem
ent plane
uses the
SFTP
protocol
for file
transfer.
Listening Port Encryption Special
Authentication Mode Version
Configurable (Y/N) Mode Scenario
NCEV1R18C
No User Name/Password SSH None
00 and later
NCEV1R18C
No User Name/Password SSL/TLS None
00 and later
NCEV1R18C
Yes User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password SSL/TLS None
00 and later
NCEV1R18C
No Token SSL/TLS None
00 and later
FTP
transfer
must be
enabled on
the firewall
to ensure
proper FTP
transfer. In
communica
tion based
on
plaintext
FTP, the
detect ftp
function
must be
enabled. In
communica
NCEV1R18C tion based
No User Name/Password SSL/TLS
00 and later on
ciphertext
FTP, the
FTP-
BIDIR
function in
addition to
the detect
ftp
function
must be
enabled.
For details
about how
to enable
the FTP-
BIDIR
function,
see the
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password HTTPS None
10 and later
NCEV1R18C
No Token SSL/TLS None
10 and later
NCEV1R18C
No Public key;User Name/Password SSH None
00 and later
Service Process Component Configuration File and Parameter Remarks
CloudSOP-
SSH sshd None None
UniEP
CloudSOP-
MCERService mcer None None
UniEP
/opt/oss/apps/ApacheService/conf/extra/httpd-
iMAPCommon apache CloudSOP None
vhost.conf/Listen
porttrunkingser
iMAPCommon CloudSOP None None
vice
NCE-FAN
FanAppNBIAg
FanAppNBIAgent management None None
ent
domain
NCE-FAN
LHNodeJSSer
LHNodeJSService management None None
vice
domain
The
default
SFTP
service
port of
NCE server OSS IP OSS
NCE server Any port OSS 22 TCP
IP address address side,
NCE
server
acts as a
SFTP
client.
Default
FTP
service
port on
the OSS
side. The
performa
nce text
NBI
NCE server OSS IP process
NCE server Any port OSS 21 TCP
IP address address pushes
the
exported
performa
nce and
inventory
files to
the OSS
through
FTP.
The ftp
service
port used
for NCE
server
when it
acts as a
ftp server
OSS IP NCE server
OSS Any port NCE server 21 TCP and OSS
address IP address
may
PULL
exported
text files
from it,it
is not
used by
advice.
Default
FTP
service
port on
the OSS
side. The
performa
nce text
NBI
NCE server OSS IP process
NCE server Any port OSS 20 TCP
IP address address pushes
the
exported
performa
nce and
inventory
files to
the OSS
through
FTP.
The ftp
service
port used
for NCE
server
when it
acts as a
ftp server
OSS IP NCE server
OSS Any port NCE server 20 TCP and OSS
address IP address
may
PULL
exported
text files
from it.
It is not
used by
advice.
The
rest_agen
t process
notifies
the port
to
provide
notificati
on
connecti
ons and
reporting
functions
OSS IP NCE server
OSS Any port NCE server 30105 TCP . The
address IP address
client
establish
es a WSS
or WS
connecti
on to the
rest_agen
t through
the port
and gets
the
notificati
on.
Port for
the
Notify_S
ervice
process
in SSL
mode.
The
Notify_S
ervice
process,
an
ACE/TA
O open-
OSS IP NCE server
OSS Any port NCE server 22002 TCP source
address IP address
notificati
on
service
of the
CORBA
NBI, is
used to
forward
events to
the OSS
through
the
CORBA
NBI.
Port for
the
Naming_
Service
process
in SSL
mode.
The
Naming_
Service
process,
an
ACE/TA
OSS IP NCE server
OSS Any port NCE server 22001 TCP O-based
address IP address
open-
source
naming
service
process
of the
CORBA
NBI, is
used to
register
CORBA
service
objects.
Port for
the
Agent_C
ORBA
process
in SSL
mode.
This port
is used
OSS IP NCE server for the
OSS Any port NCE server 22003 TCP
address IP address NMS to
listen to
CORBA
requests
from the
OSS
through
the
CORBA
NBI.
Alarm
NBI
provided
OSS IP NCE server
OSS Any port NCE server 31232 TCP for the
address IP address
third-
party
OSS.
Port used
for the
third
party
system to
connect
to the
northbou
nd load
balance
service.
The
northbou
nd load
balance
Third-party
Third-party NCE server service
server IP Any port NCE server 26335 TCP
server IP address forwards
address
https
request
to API
Manage
ment
service
after it
receives
https
request
from the
third
party
applicati
on.
Port used
by the
northbou
nd
SNMP
interface
OSS IP NCE server to
OSS Any port NCE server 9812 UDP
address IP address receive
GET and
SET
request
data
from the
OSS.
Port used
by the
northbou
nd
security
interface
(that
complies
with the
TMF615
protocol
standards
) to
receive
OSS
requests.
The port
OSS IP NCE server supports
OSS Any port NCE server 8484 TCP
address IP address the
common
and SSL
communi
cation
modes.
The
configura
tion file
related to
the port
determin
es the
use of
the SSL
communi
cation
mode.
Port used
for
receiving
SOAP
messages
from the
OSS IP NCE server XMLAg
OSS Any port NCE server 13172 TCP
address IP address ent
process
and
forwardi
ng them
to the
OSS.
Port used
by the
CloudSO
P server
Specified
NCE server OSS IP to report
NCE server 6666 OSS port on the UDP
IP address address alarm
server
data to
the NMS
over
SNMP.
Port
30087 is
open by
the
manage
ment
plane
OSS IP NCE server
OSS 31077 NCE server 30087 UDP and is
address IP address
used to
send
alerts to
the
product
alert
service.
Port used
by the
NM to
synchron
OSS IP NCE server ize
OSS Any port NCE server 9090 TCP
address IP address performa
nce
instances
to the
NCE.
Port that
the OSS
uses to
downloa
d
OSS IP NCE server performa
OSS Any port NCE server 22 TCP
address IP address nce files
from the
uTraffic
server
through
SFTP.
Port that
the
uTraffic
server
uses to
NCE server OSS IP upload
NCE server Any port OSS 22 TCP
IP address address performa
nce files
to the
OSS
through
SFTP.
SFTP file
transfer
port. The
uTraffic
collector
is backed
up to
another
SFTP
Server
Third-party
NCE server through
NCE server Any port OSS server IP 22 TCP
IP address this port,
address
or the
uTraffic
collector
is
restored
from the
backup
server
through
this port.
Port used
for
receiving
SOAP
messages
from the
OSS IP NCE server XMLAg
OSS Any port NCE server 13171 TCP
address IP address ent
process
and
forwardi
ng them
to the
OSS.
Port used
to send
Third-party Specified
NCE server Third-party Syslogs.
NCE server Any port server IP port on the UDP
IP address server User
address server
configura
tion.
Port used
to send
Third-party Specified
NCE server Third-party Syslogs.
NCE server Any port server IP port on the TCP
IP address server User
address server
configura
tion.
Third-party Specified Port used
NCE server Third-party
NCE server Any port server IP port on the TCP to upload
IP address server
address server file.
Port used
by third-
party
devices
to
receive
alarms
Third-party Specified and
NCE server Third-party
NCE server Any port server IP port on the TCP performa
IP address server
address server nce data
reported
by the
Agile
Controlle
r.User
configura
tion.
The port
used by
the
websock
et
channel
Third-party to
Third-party NCE server
server IP Any port NCE server 18010 TCP receive
server IP address
address alarms
data
reported
by the
third-
party
devices.
Port used
for the
third
party
system to
connect
to the
northbou
nd load
balance
service.
The
northbou
nd load
balance
Third-party
Third-party NCE server service
server IP Any port NCE server 18002 TCP
server IP address forwards
address
HTTPS
request
to API
Manage
ment
service
after it
receives
https
request
from the
third
party
applicati
on.
Port for
the
xml_age
nt
process
in
HTTP(S)
mode.
OSS IP NCE server
OSS Any port NCE server 9997 TCP This port
address IP address
is used
for the
NMS to
listen to
HTTP(S)
requests
from the
OSS.
Port used
to
Third-party Specified communi
NCE server Third-party
NCE server Any port server IP port on the TCP cate with
IP address server
address server a third-
party
system.
Port for
the
BmsPon
EmsTL1
process.
This port
is used to
OSS IP NCE server provide
OSS Any port NCE server 13027 TCP
address IP address PON
services
for
access
NEs
through
the TL1
NBI.
Port for
the
BmsPon
AlarmTL
1
process.
This port
is used to
OSS IP NCE server provide
OSS Any port NCE server 13028 TCP
address IP address PON
Alarm
services
for
access
NEs
through
the TL1
NBI.
Port for
the cltsi
process.
This port
interconn
ects with
OSS IP NCE server NBIs and
OSS Any port NCE server 9000 TCP
address IP address is used to
conduct
narrowba
nd line
tests on
access
NEs.
Port for
the
StdCltsi
Dm
process.
This port
interconn
OSS IP NCE server ects with
OSS Any port NCE server 9002 TCP
address IP address the
StdCltsi
NBI and
is used to
conduct
line tests
on access
NEs.
Port for
the
TL1NBi
Dm
process.
This port
interconn
ects with
the TL1
OSS IP NCE server
OSS Any port NCE server 9819 TCP NBI and
address IP address
is used to
provision
services
for
access
NEs
through
the TL1
NBI.
Port for
the
agt_cst_x
ml
process.
This port
interconn
ects with
the XML
NBI(non
OSS IP NCE server MTOSI)
OSS Any port NCE server 30102 TCP
address IP address and is
used to
provision
services
for
access
NEs
through
the XML
NBI(non
MTOSI).
Port for
the
Agent_C
ORBA
process
in non-
SSL
mode.
This port
is used
OSS IP NCE server
OSS Any port NCE server 12003 TCP for the
address IP address
NMS to
listen to
CORBA
requests
from the
OSS
through
the
CORBA
NBI.
Port for
the
Naming_
Service
process
in non-
SSL
mode.
The
Naming_
Service
process,
an
OSS IP NCE server ACE/TA
OSS Any port NCE server 12001 TCP
address IP address O-based
open-
source
naming
service
process
of the
CORBA
NBI, is
used to
register
CORBA
service
objects.
Notify_S
ervice
process,
an
ACE/TA
O-based
open-
source
notificati
on
OSS IP NCE server service
OSS Any port NCE server 12002 TCP
address IP address of the
CORBA
NBI, is
used to
forward
events to
the OSS
through
the
CORBA
NBI.
mode),
will use a
dynamic
ally
generate
d port
(1024-
65535).
If you
need to
configure
the
firewall,
make
sure that
these
ports are
Specified not
NCE server OSS IP
NCE server Any port OSS port on the TCP restricted
IP address address
server and that
the OSS
side
needs to
use a
fixed
port.
Otherwis
e, the
client
and
server
ports are
random,
and the
firewall
will
block the
mode),
will use a
dynamic
ally
generate
d port
(1024-
65535).
If you
need to
configure
the
firewall,
make
sure that
these
ports are
not
Specified
NCE server OSS IP restricted
NCE server Any port OSS port on the TCP
IP address address and that
server
the OSS
side
needs to
use a
fixed
port.
Otherwis
e, the
client
and
server
ports are
random,
and the
firewall
will
block the
communi
Port for
the
iNBXM
LSoapAg
ent
process.
This port
interconn
ects with
the
OSS IP NCE server XML1.1
OSS Any port NCE server 10501 TCP
address IP address NBI and
is used to
provision
services
for
access
NEs
through
the
XML1.1
NBI.
cally
enabled
and
always
exists
when the
NBINotif
yService
process
is started
and the
omc
alarm
function
is
enabled.
2. Port
inherit
OSS IP NCE server
OSS Any port NCE server 31232 TCP the
address IP address
OMCAg
ent
function
to
synchron
ize and
report
alarms.
The
client
uses this
port to
connect
to the
NBINotif
yService
process
to obtain
This is a
communi
cation
port that
the
N2510
server
provides
to the
NCE-T
for the
NCE-T
visiting
NCE server OSS IP
NCE server Any port OSS 8663 TCP the
IP address address
N2510
test
interface
and issue
an
automati
c optical
time
domain
reflectom
eter
(OTDR)
test.
Listening Port Encryption Special
Authentication Mode Version
Configurable (Y/N) Mode Scenario
NCEV1R18C
No Public key;User Name/Password SSH None
00 and later
NCEV1R18C
No Public key;User Name/Password SSH None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
Only for
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS NCE-
00 and later
Super.
NCEV1R18C
Yes Digital certificate (two-way) WSS None
00 and later
Digital certificate (two- NCEV1R18C
Yes SSL/TLS None
way);User Name/Password 00 and later
Digital certificate (two- NCEV1R18C
Yes SSL/TLS None
way);User Name/Password 00 and later
NCEV1R18C
Yes Token SSL/TLS None
00 and later
SNMPV1/V2c:
SNMPv1/SNMPv2c: NCEV1R18C
No none; SNMPV3: None
Community name, SNMPv3 00 and later
encryption
NCEV1R18C
No User Name/Password SSL/TLS None
00 and later
NCEV1R18C
No User Name/Password SNMPV3 None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No User Name/Password SSH None
00 and later
NCEV1R18C
No User Name/Password SSH None
00 and later
NCEV1R18C
No User Name/Password SSH None
00 and later
NCEV1R18C
Yes User Name/Password None None
00 and later
NCEV1R18C
Yes None None None
10 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
Yes User Name/Password SSH None
10 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
Yes Token SSL/TLS None
10 and later
NCEV1R18C
Yes User Name/Password None None
00 and later
NCEV1R18C
Yes User Name/Password None None
00 and later
NCEV1R18C
Yes User Name/Password None None
00 and later
This record
describes
the
scenatio:A
User Name/Password;Digital NCEV1R18C
Not Concerning None gent_COR
certificate (two-way) 00 and later
BA as a
client,and
OSS as a
server.
This record
describes
the
scenatio:
User Name/Password;Digital NCEV1R18C Notify_Ser
Not Concerning None
certificate (two-way) 00 and later vice as a
client,and
OSS as a
server.
NCE- /
AnalyzerKafkaService analyzerkafkasvc NetworkIn opt/oss/NCE/apps/AnalyzerKafkaServ None
sight ice/tools/kafka/config
$APP_ROOT/conf/nbi/rest/conf/rest_a
RestAgent rest_agent NBI gent.properties/JETTY_NOTIFY_SER None
VICE_PORT
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
onf/ii_corbaagent_bundle/bundle.cfg
NotifyService_SSLPort
NotifyService Notify_Service NBI None
/opt/oss/envs/Product-
NotifyService/*/etc/oss_cfg/nbi/corba/
cbb/nbi/nbicbb_3p/share/bin/ntf.cfg
sslport
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
onf/ii_corbaagent_bundle/bundle.cfg
NamingService_SSLPort
CorbaNamingService Naming_Service NBI None
/opt/oss/envs/Product-
CorbaNamingService/*/etc/oss_cfg/nb
i/corba/cbb/nbi/nbicbb_3p/share/bin/ns
.cfg
sslport
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
CorbaAgent Agent_CORBA NBI None
onf/ii_corbaagent_bundle/bundle.cfg
CORBAAgent_SSLPort
NCE-
NBIBridgeService NBIBridgeService NetworkIn None None
sight
CloudSOP-
UniEPService uniepservice None None
UniEP
NCE-
NBIBridgeService NBIBridgeService NetworkIn None None
sight
NCE-
vsftpd vsftpd NetworkIn None None
sight
NCE-
vsftpd vsftpd NetworkIn None None
sight
NCE-
vsftpd vsftpd NetworkIn None None
sight
/
NBI activemqservice CloudSOP {tenant}/apps/ActiveMQService/conf/ None
activemq.xml/transportConnector
NorthboundCommunicatio
KARAF AC-BP None None
nService
NorthboundCommunicatio
KARAF AC-BP None None
nService
NorthboundCommunicatio
KARAF AC-BP None None
nService
NorthboundCommunicatio
KARAF AC-BP None None
nService
NorthboundCommunicatio
KARAF AC-BP None None
nService
APIManager APIMLBService AC-BP None None
/
opt/oss/NCE/apps/XMLAgent/conf/etc
XMLAgent xml_agent NBI None
/oss_cfg/nbi/xml/conf/xmlagent.cfg
HTTPS_URL HTTP_URL
APIManager apinotifyproxyservice CloudSOP None None
NCE-FAN
PonEmsTL1Service BmsPonEmsTL1 manageme None None
nt domain
NCE-FAN
PonAlarmTL1Service BmsPonAlarmTL1 manageme None None
nt domain
NCE-FAN
CltsiService cltsi manageme None None
nt domain
NCE-FAN
StdCltsiService StdCltsiDm manageme None None
nt domain
NCE-FAN
TL1NBIService TL1NBiDm manageme None None
nt domain
NCE-FAN
XML2TL1Service agt_cst_xml manageme None None
nt domain
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
CorbaAgent Agent_CORBA NBI None
onf/ii_corbaagent_bundle/bundle.cfg
CORBAAgent_Port
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
onf/ii_corbaagent_bundle/bundle.cfg
NamingService_Port
CorbaNamingService Naming_Service NBI /opt/oss/envs/Product- None
CorbaNamingService/*/etc/oss_cfg/nb
i/corba/cbb/nbi/nbicbb_3p/share/bin/ns
.cfg
port
/opt/oss/envs/Product-
CorbaAgent/*/etc/oss_cfg/nbi/corba/c
onf/ii_corbaagent_bundle/bundle.cfg
NotifyService_Port
NotifyService Notify_Service NBI None
/opt/oss/envs/Product-
NotifyService/*/etc/oss_cfg/nbi/corba/
cbb/nbi/nbicbb_3p/share/bin/ntf.cfg
port
CorbaAgent Agent_CORBA NBI None None
NotifyService Notify_Service NBI None None
NCE-FAN
XMLSoapNBIService inbxmlsoap_agent manageme None None
nt domain
NBINotifyService nbinotifyservice NBI None None
NCE-T
TransGnlDevDmService las_web manageme None None
nt domain
Feature list
Destinatio Port
Source Source IP Source Destinatio Destinatio
n IP Protocol Descrip
Device Address Port n Device n Port
Address tion
The
process
UTraffic
Adapter
uses to
receive
NCE server NCE server
NCE server Any port NCE server 13185 TCP uTraffic
IP address IP address
request,
provide
network
inventory
data to
uTraffic.
Indicates
the
internal
communi
cation
port
Client IP NCE server between
Client Any port NCE server 13187 TCP
address IP address the
XMLAge
nt and
ActiveM
Q
compone
nts.
collector
listen the
port, local
collector
NCE server NCE server
NCE server Any port NCE server 41414 TCP tasks will
IP address IP address
report
heartbeat
to this
port.
External
systems
can be
registered
with the
uTraffic
that
functions
as the
websocke
NCE server NCE server
NCE server Any port NCE server 13849 TCP t server
IP address IP address
and
receive
performa
nce
threshold-
crossing
alarms
generated
by the
uTraffic.
Listening
port for
NCE server NCE server the
NCE server Any port NCE server 13827 TCP
IP address IP address Collector
reportNB
I.
Instance
Manager
to
receives
NCE server NCE server RTP and
NCE server Any port NCE server 13825 TCP
IP address IP address create
request
for
historical
data.
Gateway
to
receives
NCE server NCE server RTP
NCE server Any port NCE server 13829 TCP
IP address IP address request
from
Insatnce
manager.
Listening
port for
NCE server NCE server
NCE server Any port NCE server 9091 TCP the
IP address IP address
collector
gateway.
Transit
NCE server NCE server 20003~2000
NCE server Any port NCE server TCP process
IP address IP address 4
port.
This port
is a
listening
port
opened
for the
ProductM
onitorAge
nt service
NCE server NCE server (python
NCE server Any port NCE server 26450 TCP
IP address IP address process).
The port
is used to
receive
startup
and stop
requests
sent by
the
server.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
NCE server NCE server 26550~2659
NCE server Any port NCE server TCP e(dr)
IP address IP address 9
listens on
the port.
Used to
access the
master
and slave
databases.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
NCE server NCE server 26750~2694
NCE server Any port NCE server TCP e(dr)
IP address IP address 9
listens on
the port.
Used to
access the
master
and slave
databases.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
NCE server NCE server
NCE server Any port NCE server 32060 TCP e(dr)
IP address IP address
listens on
the port.
Used to
access the
master
and slave
databases.
The
applicatio
n data
proxy
service
MCDBPr
oxyServic
NCE server NCE server 32063~3207
NCE server Any port NCE server TCP e(dr)
IP address IP address 9
listens on
the port.
Used to
access the
master
and slave
databases.
This port
is a
listening
port of
the
DeployA
gent
NCE server NCE server
NCE server Any port NCE server 32040 TCP service.
IP address IP address
This port
is used
for the
agent
service
deployme
nt system.
These
ports are
listening
ports of
the
CloudSO
P-UniEP
service
(Java
process).
They are
used for
NCE server NCE server 26600~2664 applicatio
NCE server Any port NCE server TCP
IP address IP address 9 n IR
reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
These
ports are
listening
ports of
the
CloudSO
P-UniEP
service
(Java
process).
They are
used for
NCE server NCE server 31800~3189 applicatio
NCE server Any port NCE server TCP
IP address IP address 9 n IR
reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
This port
is a
listening
port of
the
RouteAge
nt service
(python
process).
NCE server NCE server This port
NCE server Any port NCE server 26307 TCP
IP address IP address is used
for
registerin
g and
deregister
ing
service
routing
informati
on.
This port
is the
MCBusS
ervice
managem
ent port.
The port
is used
NCE server NCE server for
NCE server Any port NCE server 26331 TCP
IP address IP address maintena
nce
operation
s, such as
offhookin
g,
onhookin
g, and
isolation.
This port
is the
MCERSe
rvice
managem
ent port.
The port
is used
NCE server NCE server for
NCE server Any port NCE server 26332 TCP
IP address IP address maintena
nce
operation
s, such as
offhookin
g,
onhookin
g, and
isolation.
This port
is the
NCE server NCE server ServiceC
NCE server Any port NCE server 30100 TCP
IP address IP address enter
managem
ent port.
This port
is the
NCE server NCE server
NCE server Any port NCE server 30101 TCP Etcd
IP address IP address
managem
ent port.
The port
used by
the karaf
process
NCE server NCE server
NCE server Any port NCE server 19175 TCP provides
IP address IP address
the
command
console
service.
Port used
by
AccessSe
rvice to
forward
NCE server NCE server authentic
NCE server Any port NCE server 27331 TCP
IP address IP address ation
requests
in
MinAPIG
atewaySe
rvice.
Listening
port for
RMServi
ce to
NCE server NCE server access the
NCE server Any port NCE server 3388 TCP
IP address IP address database
of
resource
relationsh
ips.
The port
used by
the
talgorith
mh,
talgorith
ml,
algorithm
org
process.
Provides
a parent-
child
process
communi
NCE server NCE server 23000~2310 cation
NCE server Any port NCE server TCP
IP address IP address 0 service.
Used in
survivabil
ity
analysis /
fault
simulatio
n, preset
path,
optical
reach
graph to
parallel
calculatio
n.
Port used
by the
NM to
synchroni
NCE server NCE server ze
NCE server Any port NCE server 9090 TCP
IP address IP address performa
nce
instances
to the
NCE.
Port used
by
SBIBridg
eService -
for all
NCE server NCE server
NCE server Any port NCE server 9092 TCP requests
IP address IP address
from
Collector
to
SBIBridg
eService.
BusServi
ce
managem
ent port.
This port
functions
as a
proxy
service
port to
support
HTTP. In
the
default
NCE server NCE server BusServi
NCE server Any port NCE server 32018 TCP
IP address IP address ce
scenario,
HTTP is
disabled.
Therefore
, if a
service
uses this
port, it
must
ensure
communi
cation
security
of itself.
These
ports are
listening
ports of
the
service
(Java
process).
They are
used for
applicatio
NCE server NCE server 26100~2619 n IR
NCE server Any port NCE server TCP
IP address IP address 9 reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
PaaS:the
NCE server NCE server port for
NCE server Any port NCE server 26325 TCP
IP address IP address Discover
y
Maintena
nce port
NCE server NCE server
NCE server Any port NCE server 32029 TCP of
IP address IP address
OMMHA
.
IR
managem
ent port
for
maintena
NCE server NCE server nce
NCE server Any port NCE server 26305 TCP
IP address IP address operation
s, such as
off-hook,
on-hook,
and
isolation
Backend
ERServic
e
managem
ent port
for
NCE server NCE server maintena
NCE server Any port NCE server 26329 TCP
IP address IP address nce
operation
s, such as
off-hook,
on-hook,
and
isolation.
ER
managem
ent port
for
maintena
NCE server NCE server nce
NCE server Any port NCE server 26306 TCP
IP address IP address operation
s, such as
off-hook,
on-hook,
and
isolation.
The port
used by
the karaf
NCE server NCE server process
NCE server Any port NCE server 8111 TCP
IP address IP address provides
the client
service.
Healthche
ck port
for ATS
NCE server NCE server compone
NCE server Any port NCE server 8083 TCP
IP address IP address nt within
APINotif
yProxySe
rvice.
Configura
tion
managem
ent port
NCE server NCE server for ATS
NCE server Any port NCE server 8084 TCP
IP address IP address compone
nt within
APINotif
yProxySe
rvice.
Health
check
NCE server NCE server
NCE server Any port NCE server 30107 TCP port of
IP address IP address
CronServ
ice.
Status
NCE server NCE server
NCE server Any port NCE server 32029 TCP query
IP address IP address
port
The port
used by
the karaf
process
NCE server NCE server
NCE server Any port NCE server 8210 TCP provides
IP address IP address
the
command
console
service.
The port
used by
the karaf
process
NCE server NCE server
NCE server Any port NCE server 8211 TCP provides
IP address IP address
the
command
console
service.
inventory
resource
collecting
for small
N
products
(such as
uTraffic).
Client
requests
are
forwarde
d to
AgentInte
grateServ
ice
through
the
NCE server NCE server reverse
NCE server Any port NCE server 13184 TCP
IP address IP address proxy
function
of
U2kProx
yService.
Certificat
e bi-
directiona
l
verificati
on of
U2kProx
yService
is
responsib
le for
channel
security,
user name
TCP port
for
forwardin
g traps
NCE server NCE server internally.
NCE server Any port NCE server 13162 TCP
IP address IP address Traps are
forwarde
d to NEs
through
this port.
Proxy
port for
TL1
command
s. This
NCE server NCE server
NCE server Any port NCE server 9820 TCP port is
IP address IP address
used to
run TL1
command
s
internally
The
process
nemgr_isi
te uses
NCE server NCE server
NCE server Any port NCE server 13083 TCP this port
IP address IP address
to receive
Web
HTTP
request.
NwDataS
ynUI
process
port,
which
provides
NCE server NCE server the GUI
NCE server Any port NCE server 11500 TCP
IP address IP address display
service
for
southbou
nd data
synchroni
zation.
Registry
process
port,
NCE server NCE server which is
NCE server Any port NCE server 8300 TCP
IP address IP address used to
allocate
service
processes.
ZMQ
channel
port of
the
SingleSi
mService
process,
which is
used for
data
transmissi
on
between
the
NCE server NCE server
NCE server Any port NCE server 18400 TCP SingleSi
IP address IP address
mService
process
and the
bottom
layer.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.
ZMQ
channel
port of
the
bottom
layer,
which is
used for
data
transmissi
on
between
the
NCE server NCE server 18700~1870 bottom
NCE server Any port NCE server TCP
IP address IP address 1 layer and
the
SingleSi
mService
process.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.
The port
used by
the
WhatIfAn
alysisHel
pService
NCE server NCE server 31800~3189 process
NCE server Any port NCE server TCP
IP address IP address 9 provides
the what-
if
analysis
help
informati
on service
The port
used by
the
SMPMQ
Service
process
provides
NCE server NCE server 30107~3010
NCE server Any port NCE server TCP the
IP address IP address 9
SMPMan
agerServi
ce service
for data
transfer in
SSL
mode.
karaf CLI
NCE server NCE server
NCE server Any port NCE server 19115 TCP service
IP address IP address
port
The port
NCE server NCE server used by
NCE server Any port NCE server 2378 TCP
IP address IP address etcd
process.
The port
used by
the karaf
process
NCE server NCE server
NCE server Any port NCE server 8201 TCP provides
IP address IP address
the
command
console
service.
These
ports are
listening
ports of
the
homenet
work
service(Ja
va
process).
They are
used for
NCE server NCE server 31800~3189 applicatio
NCE server Any port NCE server TCP
IP address IP address 9 n IR
reverse
agent
ports and
are
dynamica
lly
allocated.
Each
applicatio
n process
occupies
one port.
The port
is opened
for
SBIBridg
eService(
correspon
ding
proccess
name is
NCE server NCE server
NCE server Any port NCE server 8080 TCP sbibridge
IP address IP address
service),
and is
used to
receive
the
collection
configura
tion
request.
This port
is an open
port for
the
KARAF
process
correspon
ding to
the
NCE server NCE server NetconfC
NCE server Any port NCE server 19122 TCP
IP address IP address lientServi
ce
service.
This
service
provides
local
command
line
services.
This port
is an open
port for
the
KARAF
process
correspon
ding to
the
NCE server NCE server NetconfS
NCE server Any port NCE server 19129 TCP
IP address IP address erverServ
ice
service.
This
service
provides
local
command
line
services.
This port
is an open
port for
the
KARAF
process
correspon
ding to
the
NCE server NCE server
NCE server Any port NCE server 19132 TCP DTPServi
IP address IP address
ce
service.
This
service
provides
local
command
line
services.
ZMQ
channel
port of
the
ProtoInfS
ervice
process,
which is
used for
data
transmissi
on
between
the
NCE server NCE server
NCE server Any port NCE server 8420 TCP ProtoInfS
IP address IP address
ervice
process
and the
bottom
layer.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.
ZMQ
channel
port of
the
SingleSi
mService
process,
which is
used for
data
transmissi
on
between
the
NCE server NCE server
NCE server Any port NCE server 8720~8721 TCP SingleSi
IP address IP address
mService
process
and the
bottom
layer.
Only the
local
loopback
address
127.0.0.1
is
allowed
to access
this port.
UDP is
used only
in the
GaussDB
scenario.
The port
is used to
collect
UDP
connectio
NCE server NCE server 32080~3208 ns
NCE server Any port NCE server UDP
IP address IP address 9 between
the
statistics
collection
process of
the
GaussDB
server
and the
main
process.
UDP is
used only
in the
GaussDB
scenario.
The port
is used to
collect
UDP
connectio
NCE server NCE server 26500~2650 ns
NCE server Any port NCE server UDP
IP address IP address 9 between
the
statistics
collection
process of
the
GaussDB
server
and the
main
process.
The port
used by
the
TrafficSy
ncService
NCE server NCE server 31800~3189 process,
NCE server Any port NCE server TCP
IP address IP address 9 which
provides
traffic
synchroni
zation
service.
The port
used by
the
TrafficSy
ncCerMg
rService
NCE server NCE server 31800~3189
NCE server Any port NCE server TCP process,
IP address IP address 9
which
provides
certificate
managem
ent
service.
The port
used by
the
OpenEM
Service's
NCE server NCE server Karaf
NCE server Any port NCE server 19115 TCP
IP address IP address process to
provide
local
command
line
services.
The ports
used by
the
nemgr_v8
trans
process
NCE server NCE server 13210~1322 provides
NCE server Any port NCE server TCP
IP address IP address 4 the HTTP
service.Cl
ient--
webserver
--
nemgr_v8
trans.
Internal
port used
to
NCE server NCE server forward
NCE server Any port NCE server 13148 TCP
IP address IP address http
request of
nemgr
explorer.
Used by
NCE server NCE server TransGnl
NCE server Any port NCE server 13147 TCP
IP address IP address DevDM
process.
The
IPDcnD
M
process
listens to
this port
and
receives
the
DHCP
requests
from NEs
or sends
the
DHCP
NCE server NCE server
NCE server Any port NCE server 13241 UDP responses
IP address IP address
to NEs.
IPDcnD
M
process
listens on
port
13241. It
suggest
that close
the port
on
hardware
firewall.
Port for
the gcli
process.
This port
is used to
NCE server NCE server process
NCE server Any port NCE server 13061 TCP
IP address IP address HTTP
requests
from
GCLI
services.
Port for
the
QuickDis
play
process.
This port
NCE server NCE server is used to
NCE server Any port NCE server 13443 TCP
IP address IP address process
HTTP
requests
from
QuickDis
play
services.
The port
used by
the
ip_isstar
process
NCE server NCE server provides
NCE server Any port NCE server 13240 TCP
IP address IP address open data
and report
export
service
for IP
domain.
Port for
nesvc_v8
ptn
processes.
This port
is used
for
communi
cation
between
NEs and
the
NCE server NCE server 13351~1336 nemgr_v8
NCE server Any port NCE server TCP
IP address IP address 5 ptn
managem
ent
process.
NESVC_
V8PTN is
multiple
instances
and one
instance
matches
one port
Listening Port
Encryption Special
Configurable Authentication Mode Version
Mode Scenario
(Y/N)
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
10 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No None SSL/TLS None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
Need to
deploy
NCEV1R18C
No User Name/Password None master-
00 and later
slave
database.
Need to
deploy
NCEV1R18C
No User Name/Password None master-
00 and later
slave
database.
Need to
deploy
NCEV1R18C
No User Name/Password None master-
00 and later
slave
database.
Need to
deploy
NCEV1R18C
No User Name/Password None master-
00 and later
slave
database.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes User Name/Password SSH None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
In the
default
BusService
scenario,
this port is
disabled.
When a
service
NCEV1R18C
No None None installs
00 and later
BusService
on GUIs,
relevant
parameters
must be
configured
to enable
this port.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
Distributed
NCEV1R18C access
No Digital certificate (two-way) HTTPS
00 and later node HA
scenario
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
Yes User Name/Password SSH None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
Used in
NCEV1R18C distributed
No Digital certificate (two-way) SSL/TLS
00 and later HA
scenarios.
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
SNMPV1/V2c:
SNMPv1/SNMPv2c: NCEV1R18C
No none; SNMPV3: None
Community name, SNMPv3 00 and later
encryption
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No User Name/Password SSH None
10 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
Port 13241
is enabled
only on
SUSE
Linux. On
SUSE
Linux, port
67 is
mapped to
port 13241
using
None: standard protocol NCEV1R18C
No None iptables,
(application layer protocol) 00 and later
and the
IPDcnDM
process
listens on
port 13241.
It suggest
that close
the port on
hardware
firewall.
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No Token None None
00 and later
NCEV1R18C
No User Name/Password SSL/TLS None
10 and later
/opt/oss/envs/Product-
ActiveMQService ActiveMQ NBI ActiveMQService/*/conf/activemq.xml
transportConnector
/
opt/oss/NCE/apps/UniCollectAgentSer
NCE-
UniCollectAgentService UniCollectAgentService vice/conf/agentconf/agentconf.propertie
Collector
s/
agent.task.port
NCE-
NBIBridgeService NBIBridgeService NetworkInsig None
ht
NCE-
PmNbiService ReportNBI NetworkInsig None
ht
NCE-
ProvisionService InstanceManager NetworkInsig None
ht
NCE-
ProvisionService Gateway NetworkInsig None
ht
NCE-
ProvisionService Gateway NetworkInsig None
ht
NCE-
TransitService TransitService NetworkInsig None
ht
/
CloudSOP-
ProductMonitorAgent productmonitoragent opt/oss/manager/apps/ProductMonitorA
UniEP
gent/etc/mcagent.conf/listen_port
CloudSOP-
MCDBProxyService mcdr None
UniEP
CloudSOP-
MCDBProxyService mcdr None
UniEP
CloudSOP-
MCDBProxyService mcdr None
UniEP
CloudSOP-
MCDBProxyService mcdr None
UniEP
CloudSOP-
DeployAgent deployagent None
UniEP
/opt/oss/manager/apps/DeployAgent-
*/etc/install/default_value.json/IRListe
CloudSOP- nPorts
UniEPService All
UniEP /opt/oss/envs/Product-
ProductMonitorAgent/service/etc/instal
l/default_value.json/IRListenPorts
/opt/oss/manager/apps/DeployAgent-
*/etc/install/default_value.json/IRListe
CloudSOP- nPorts
UniEPService All
UniEP /opt/oss/envs/Product-
ProductMonitorAgent/service/etc/instal
l/default_value.json/IRListenPorts
CloudSOP-
RouterAgent routeragent None
UniEP
CloudSOP-
MCBusService mcir None
UniEP
CloudSOP-
MCERService mcer None
UniEP
CloudSOP-
ServiceCenter sc None
UniEP
CloudSOP-
Etcd cse-etcd None
UniEP
NCE-T
talgorithmh, talgorithml,
ACTService control None
algorithmorg
domain
NCE-
NBIBridgeService NBIBridgeService NetworkInsig None
ht
NCE-
SBIBridgeService SBIBridgeService NetworkInsig None
ht
<Installation
directory>/manager/apps/BusService/et
BusService ir CloudSOP
c/nginx/conf/ir_exts/server_ir_lo.conf.t
emplate
/opt/oss/manager/apps/DeployAgent-
*/etc/install/default_value.json/IRListe
CloudSOP- nPorts
UniEPService All
UniEP /opt/oss/envs/Product-
ProductMonitorAgent/service/etc/instal
l/default_value.json/IRListenPorts
Configuration item
processes/ir/protocols/MGRMT in
<Installation
directory>/manager/apps/BusService/p
BusService ir CloudSOP ub/app_define.json
Configuration item processes/ir-{0}-
{0}/MGRMT in <Installation
directory>/manager/apps/BusService/et
c/sysconf/BusService-{version}.json
Configuration item
processes/ber/protocols/MGRMT in
<Installation directory>/
{tenant}/apps/BackendERService/pub/a
pp_define.json
BackendERService ber CloudSOP Configuration item processes/ber-{0}-
{0}/MGRMT in <Installation
directory>/
{tenant}/apps/BackendERService/etc/s
ysconf/BackendERService-
{version}.json
Configuration item
processes/er/protocols/MGRMT in
<Installation directory>/
{tenant}/apps/ERService/pub/app_defi
ne.json
ERService er CloudSOP
Configuration item processes/er-{0}-
{0}/MGRMT in <Installation
directory>/
{tenant}/apps/ERService/etc/sysconf/E
RService-{version}.json
/
CloudSOP- opt/oss/manager/apps/OMMHAService
OMMHAService ommha
UniEP /module/hacom/conf/hacom.xml/rpc-
>addr->port
/opt/oss/envs/Product-OMPubService/
{time-
OMPubService KARAF AC-BP
shot}/controller/etc/org.apache.karaf.sh
ell.cfg
/opt/oss/envs/Product-
NorthboundCommunicationService/
NorthboundCommunicatio
KARAF AC-BP {time-
nService
shot}/controller/etc/org.apache.karaf.sh
ell.cfg
NCE- $APP_ROOT/bin/start_AgentIntegrate.
AgentIntegrateService AgentIntegrate
Common sh
NCE-FAN
TrapTransProxyService TrapTransProxy management None
domain
NCE-FAN
inTL1NBIService inTL1NBiDm management None
domain
NCE-FAN
ISiteNeMgrService nemgr_isite management None
domain
WhatIfAnalysisHelpServic WhatIfAnalysisHelpServic
IP-Crystal None
e e
NCE-
SMPMQService SMPMQService None
Common
opt/oss/envs/Product-
FANSouthService/{time-
FAN-South FAN-South FAN-South shot}/controller/etc/org.apache.karaf.sh
ell.cfg
CloudSOP-
Etcd cse-etcd None
UniEP
/opt/oss/envs/Product-ACService/
NCE-IP
{time-
ACService KARAF control
shot}/controller/etc/org.apache.karaf.sh
domain
ell.cfg
NCE-FAN /
HomeNetWorkService homenetworkservice management opt/oss/NCE/apps/XXXXXService/etc/
domain sysconf/XXXXXServiceXXXXX.json
NCE-
SBIBridgeService sbibridgeservice NetworkInsig None
ht
/opt/oss/envs/Product-
NetconfClientService/{time-
NetconfClientService KARAF AC-BP
shot}/controller/etc/org.apache.karaf.sh
ell.cfg
/opt/oss/envs/Product-
NetconfServerService/{time-
NetconfServerService KARAF AC-BP
shot}/controller/etc/org.apache.karaf.sh
ell.cfg
/opt/oss/envs/Product-DTPService/
{time-
DTPService DTPService AC-BP
shot}/controller/etc/org.apache.karaf.sh
ell.cfg
CloudSOP-
UniEPService gaussdb None
UniEP
CloudSOP-
UniEPService gaussdb None
UniEP
/opt/oss/envs/Product-OpenEMService/
NCE-IP
{time-
OpenEMService Karaf management
shot}/controller/etc/org.apache.karaf.sh
domain
ell.cfg sshPort
NCE-T
NemgrV8transService nemgr_v8trans management None
domain
NCE-T
NemgrWebtransService nemgr_webtrans management None
domain
NCE-T
TransGnlDevDm TransGnlDevDm management None
domain
NCE-IP
GcliService IPDcnDM management None
domain
NCE-IP
GcliService gcli management NULL
domain
NCE-IP
PathViewerService QuickDisplay management None
domain
NCE-IP
IPBaseService ip_isstar management None
domain
NCE-IP
NemgrV8ptnService nesvc_v8ptn management None
domain
Remarks
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
Customize
d by
microservi
ces
None
None
None
None
None
None
None
None
PaaS Port
PaaS port
PaaS Port
PaaS port
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
Each
homenetwo
rk
application
process
occupies
one port.
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
The port
used by
the
zookeeper
NCE server NCE server IP process
NCE server Any port NCE server 12182 TCP
IP address address ,used by
followers
to connect
to the
leader.
zookeeper
NCE server NCE server IP node
NCE server Any port NCE server 12183 TCP
IP address address leader
election.
This port
is the
client port
for the
NwDataS
ync
NCE server NCE server IP
NCE server Any port NCE server 22 TCP service to
IP address address
connect to
the SFTP
server and
obtain
data from
the server.
The port
used by
the
utrafficbas
icservice
process
NCE server NCE server IP provides
NCE server Any port NCE server 13831 TCP
IP address address the
separate
service for
inventory
and
performan
ce data.
Port used
by the
collector
to report
backup
and
restoration
results
and obtain
NCE server NCE server IP FTP
NCE server Any port NCE server 13975 TCP
IP address address configurat
ion
parameter
s and the
type of the
last
backup
and
restoration
.Port used
by the
NM to
synchroni
NCE server NCE server IP ze
NCE server Any port NCE server 9090 TCP
IP address address performan
ce
instances
to the
NCE.
UTrafficB
asicServic
e provides
an
NCE server NCE server IP
NCE server Any port NCE server 13815 TCP interface
IP address address
for
providing
model
service.
Port used
to receive
NCE server NCE server IP
NCE server Any port NCE server 13971 TCP raw data
IP address address
from the
collector.
uTraffic
server and
Flow
Client IP NCE server IP Collector
NCE server Any port NCE server 22 TCP
address address server
SFTP file
transfer
port.
This port
is opened
for the
DHCP
service
(usr/sbin/d
hcpd
process).
When
others
node OS
is restored
on one
node,
UDP ports
opened for
the node
use the
NCE server NCE server IP DHCP
NCE server 68 NCE server 67 UDP
IP address address protocol
that
complies
with the
RFC-2131
specificati
ons.
This port
is used to
restore the
node OS .
The port
is
temporaril
y enabled
only
during OS
restoration
.
This port
is opened
for the
TFTP
service
(/usr/sbin/
in.tftpd
process).
This port
uses the
TFTP
protocol
that
complies
NCE server NCE server IP with the
NCE server Any port NCE server 69 UDP
IP address address RFC-1350
specificati
ons.
This port
is used to
restore the
node OS .
The port
is
temporaril
y enabled
only
during OS
restoration
.
process).
When
others
node OS
is restored
on one
node, the
stable port
67 will be
opened,
also an
random
UDP ports
will be
opened
and bind
IP
Address
NCE server NCE server IP
NCE server Any port NCE server 4096~65535 TCP 0.0.0.0,
IP address address
this port is
dispatched
by DHCP
service
which use
the DHCP
protocol
that
complies
with the
RFC-2131
specificati
ons.
This port
is used to
restore the
node OS .
The port
This port
is a
listening
port
opened for
the
ProductM
onitorAge
nt service
NCE server NCE server IP
NCE server Any port NCE server 26450 TCP (python
IP address address
process).
The port
is used to
receive
startup
and stop
requests
sent by
the server.
This port
is used for
the
communic
ation
between
NCE server NCE server IP
NCE server Any port NCE server 27320 TCP the
IP address address
primary
and
secondary
sites in an
HA
system.
This port
is a
ZooKeepe
NCE server NCE server IP r election
NCE server Any port NCE server 32043 TCP
IP address address port on
the
applicatio
n plane.
This port
is a
ZooKeepe
r data
NCE server NCE server IP synchroni
NCE server Any port NCE server 32042 TCP
IP address address zation
port on
the
applicatio
n plane.
Applicatio
n area
NCE server NCE server IP
NCE server Any port NCE server 32041 TCP zookeeper
IP address address
request
port.
The
MCDeplo
yService
service is
assigned
to the
listening
NCE server NCE server IP 32090~3209 port of the
NCE server Any port NCE server TCP
IP address address 9 database
for
applicatio
n access
to the
cache
database
(Redis).
The
MCDeplo
yService
service is
assigned
to the
listening
NCE server NCE server IP 26520~2654 port of the
NCE server Any port NCE server TCP
IP address address 9 database
for
applicatio
n access
to the
cache
database
(Redis).
The
MCDeplo
yService
service is
assigned
to the
listening
NCE server NCE server IP 26650~2674 port of the
NCE server Any port NCE server TCP
IP address address 9 database
for
applicatio
n access
to the
cache
database
(Redis).
The
MCDeplo
yService
service is
assigned
to the
listening
ports of
NCE server NCE server IP 32080~3208 the mysql,
NCE server Any port NCE server TCP
IP address address 9 gauss, and
zenith
databases
for
applicatio
n access
to the
relational
database.
The
MCDeplo
yService
service is
assigned
to the
listening
ports of
NCE server NCE server IP 26500~2650 the mysql,
NCE server Any port NCE server TCP
IP address address 9 gauss, and
zenith
databases
for
applicatio
n access
to the
relational
database.
This port
is a
listening
port of the
DBHASw
itchServic
e. This
NCE server NCE server IP
NCE server Any port NCE server 32013 TCP port is
IP address address
used for
the
DataBase
High
Availabilit
y Switch
System.
This port
is a
listening
port of the
DeployAg
ent
NCE server NCE server IP
NCE server Any port NCE server 32040 TCP service.
IP address address
This port
is used for
the agent
service
deployme
nt system.
These
ports are
listening
ports of
the
CloudSOP
-UniEP
service
(Java
process).
They are
used for
NCE server NCE server IP 26600~2664 applicatio
NCE server Any port NCE server TCP
IP address address 9 n IR
reverse
agent
ports and
are
dynamical
ly
allocated.
Each
applicatio
n process
occupies
one port.
These
ports are
listening
ports of
the
CloudSOP
-UniEP
service
(Java
process).
They are
used for
NCE server NCE server IP 31800~3189 applicatio
NCE server Any port NCE server TCP
IP address address 9 n IR
reverse
agent
ports and
are
dynamical
ly
allocated.
Each
applicatio
n process
occupies
one port.
This port
is a
listening
port of the
CloudSOP
-UniEP
service
(nginx
NCE server NCE server IP process).
NCE server Any port NCE server 32038 TCP
IP address address This port
is used for
internal
routing
between
managem
ent plane
services
on nodes.
This port
is a
listening
port of the
MCBusSe
rvice
(nginx
process).
This port
is used for
NCE server NCE server IP
NCE server Any port NCE server 26301 TCP obtaining
IP address address
the IP
address,
port, and
software
package
directory
of the
service
deployme
nt system.
This port
is the
NCE server NCE server IP ServiceCe
NCE server Any port NCE server 30100 TCP
IP address address nter
managem
ent port.
This port
NCE server NCE server IP is the Etcd
NCE server Any port NCE server 2380 TCP
IP address address managem
ent port.
This port
NCE server NCE server IP is the Etcd
NCE server Any port NCE server 30101 TCP
IP address address managem
ent port.
The port
is used by
EtcdServi
ce
process, it
NCE server NCE server IP provides
NCE server Any port NCE server 2379 TCP
IP address address the service
for
communic
ation to
etcd
client.
The port
is an open
port
provided
by
NCE server NCE server IP EtcdServi
NCE server Any port NCE server 2480 TCP
IP address address ce service,
and it
communic
ates with
other etcd
service.
The Dmq
process
listens to
the port
NCE server NCE server IP and
NCE server Any port NCE server 9094 TCP
IP address address provides
message
channel
functional
ity.
The port
used by
the
zookeeper
process
provides
NCE server NCE server IP the
NCE server Any port NCE server 2877 TCP
IP address address communic
ation
service for
zookeeper
leader and
follower
node.
The port
used by
the karaf
process
provides
the remote
NCE server NCE server IP call
NCE server Any port NCE server 2551 TCP
IP address address service for
file
transfer or
communic
ation in
SSL
mode.
Port used
for
receiving
https
request
NCE server NCE server IP from the
NCE server Any port NCE server 27317 TCP
IP address address third party
applicatio
n
forwarded
by the
North LB.
Port used
to receive
API query
NCE server NCE server IP requests
NCE server Any port NCE server 27334 TCP
IP address address from
MinAPIG
atewaySer
vice.
Port used
to
synchroni
ze API
NCE server NCE server IP
NCE server Any port NCE server 27335 TCP informatio
IP address address
n from
MinAPIG
atewaySer
vice.
MinAPIG
ateway
server
port,
which is
an HTTP
protocol
used to
NCE server NCE server IP listen to
NCE server Any port NCE server 9808 TCP
IP address address WEBSOC
KET
persistent
connectio
ns
forwarded
by the
APIMLB
Service.
Keepalive
d receives
Internet
Control
Message
Protocol
(ICMP)
heartbeats
from other
keepalive
NCE server NCE server IP d to
NCE server Any port NCE server 112 TCP
IP address address determine
which
node
functions
as the
active
node in an
active/stan
dby
relationshi
p.
Keepalive
d receives
Internet
Control
Message
Protocol
(ICMP)
heartbeats
from other
keepalive
NCE server NCE server IP d to
NCE server Any port NCE server 255 TCP
IP address address determine
which
node
functions
as the
active
node in an
active/stan
dby
relationshi
p.
Port used
by the
Kafka
process to
listen to
NCE server NCE server IP messages.
NCE server Any port NCE server 26402 TCP
IP address address The
process is
started by
ODAEMe
ssageQue
ueService.
Listening
port for
the
EMServic
NCE server NCE server IP e service.
NCE server Any port NCE server 31096 TCP
IP address address It
distributes
and
processes
events.
Listening
port for
the
MRBServ
NCE server NCE server IP ice
NCE server Any port NCE server 31095 TCP
IP address address service. It
distributes
and
processes
messages.
Listening
port for
the
SyslogCol
lectorServ
NCE server NCE server IP
NCE server 514 NCE server 31010 UDP ice
IP address address
service. It
receives
syslog
logs of
NEs.
Listening
port for
the
SystemSer
vice
NCE server NCE server IP
NCE server Any port NCE server 31007 TCP service. It
IP address address
manages
configurat
ion
informatio
n.
This port
provides
the
NCE server NCE server IP function
NCE server Any port NCE server 31049 TCP
IP address address of
invoking
CORBA
interfaces.
Listening
port for
the
itmservice
NCE server NCE server IP
NCE server Any port NCE server 31015 TCP process. It
IP address address
manages
tasks in a
centralize
d manner.
Listening
port for
the
TrapRecei
ver
process.
This port
is used to
communic
ate with
the service
NCE server NCE server IP
NCE server Any port NCE server 11101~11104 TCP such as
IP address address
FMAdapt
erService.
It
provides
the
function
of
distributin
g and
processing
traps.
Port of the
coordinato
r process.
This port
is used to
communic
ate with
NCE server NCE server IP the
NCE server Any port NCE server 26200 TCP
IP address address FusionInsi
ght cluster
for
managing
and
forwardin
g data
segments.
Port of the
broker
process.
External
services
NCE server NCE server IP can use
NCE server Any port NCE server 26201 TCP
IP address address this port
to query
informatio
n about
the Druid
service.
Port of the
historical
process.
This port
is used to
communic
ate with
the
NCE server NCE server IP
NCE server Any port NCE server 26202 TCP FusionInsi
IP address address
ght cluster
for
loading
and
disclosing
historical
data
segments.
Port of the
overlord
process.
This port
is used to
communic
ate with
NCE server NCE server IP
NCE server Any port NCE server 26203 TCP the
IP address address
FusionInsi
ght cluster
for
receiving
and
coordinati
ng tasks.
26204:
Port for
the
middleMa
nager
process of
the Druid
service.
26205-
NCE server NCE server IP 26204~2629
NCE server Any port NCE server TCP 26299:
IP address address 9
Ports
assigned
for the
Druid
service
when data
processing
tasks are
started.
The port
NCE server NCE server IP transmits
NCE server Any port NCE server 26300 TCP
IP address address data to
MPPDB.
Port
occupied
by Spark
(Driver)
for Spark
NCE server NCE server IP 22600~2289 driver
NCE server Any port NCE server TCP
IP address address 9 listening,
Spark UI,
and Spark
shuffle
operations
.
The port
used by
the
zookeeper
process
NCE server NCE server IP
NCE server Any port NCE server 3877 TCP provides
IP address address
the
election
service for
zookeeper
service.
TSDNDri
verService
service
listening
Client IP 32768~6 NCE server IP 22900~2299 port for
Client NCE server TCP
address 1000 address 9 inter-
service IR
bus
communic
ation port.
The port
used by
the
HFSFileA
gent
microservi
ce
NCE server NCE server IP
NCE server Any port NCE server 18888 TCP provides
IP address address
the HFS
(Distribut
ed File
System)
service for
file
transfer.
These
ports are
listening
ports of
the service
(Java
process).
They are
used for
applicatio
n IR
NCE server NCE server IP 26100~2619
NCE server Any port NCE server TCP reverse
IP address address 9
agent
ports and
are
dynamical
ly
allocated.
Each
applicatio
n process
occupies
one port.
Listening
port for
the
Messagin
gLBServi
ce service.
NCE server NCE server IP This port
NCE server Any port NCE server 26326 TCP
IP address address is used for
other
applicatio
ns to
access
messaging
services.
Listening
port for
NCE server NCE server IP the
NCE server Any port NCE server 26327 TCP
IP address address Messagin
gService
service.
Listening
port for
the
NCE server NCE server IP
NCE server Any port NCE server 26328 TCP Messagin
IP address address
gBrokeSer
vice
service.
Data
NCE server NCE server IP duplicatio
NCE server Any port NCE server 32027 TCP
IP address address n port of
OMMHA.
Heartbeat
NCE server NCE server IP
NCE server Any port NCE server 32026 TCP port of
IP address address
OMMHA.
The
managem
NCE server NCE server IP ent plane
NCE server Any port NCE server 26310 TCP
IP address address zookeeper
requests
ports.
Heartbeat
NCE server NCE server IP link
NCE server 32026 NCE server 32026 TCP
IP address address listening
port.
Data
NCE server NCE server IP synchroni
NCE server 32027 NCE server 32027 TCP
IP address address zation
port
Port used
by the
Kafka
process to
listen to
NCE server NCE server IP messages.
NCE server Any port NCE server 26403 TCP
IP address address The
process is
started by
InvMessa
geQueueS
ervice.
These
ports are
listening
ports that
ACTServi
ce\TSDN
DriverSer
vice\TSD
NSouthAc
NCE server NCE server IP 32082~3208 cessServic
NCE server Any port NCE server TCP
IP address address 3 eallocates
to mysql
database.
They are
used for
applicatio
ns to
access the
relational
database.
Port used
to
synchroni
ze API
informatio
NCE server NCE server IP
NCE server Any port NCE server 27336 TCP n between
IP address address
MinAPIG
atewaySer
vice
service
nodes.
Zookeeper
process
listening
port, as
NCE server NCE server IP the server
NCE server Any port NCE server 2184 TCP
IP address address terminal
to
communic
ate with
Kafka.
VIPservic
e process
NCE server NCE server IP
NCE server Any port NCE server 31821 TCP listen port,
IP address address
use for
web visit.
DRServic
e process
NCE server NCE server IP listen port,
NCE server Any port NCE server 8000 TCP
IP address address used for
inner
heartbeat.
The
DRServic
e process
listens on
NCE server NCE server IP the port
NCE server Any port NCE server 9001 TCP
IP address address and is
used for
disaster
recovery
heartbeat.
The port
used by
the
arbitration
-etcd
process,
NCE server NCE server IP
NCE server Any port NCE server 2390 TCP DRServic
IP address address
e will
connect
this port
to get the
arbitration
status.
The port
used by
the
arbitration
-etcd
process
NCE server NCE server IP for ETCD
NCE server Any port NCE server 2391 TCP
IP address address internal
communic
ation,
synchroni
zation of
raft status
and data.
The port
used by
the
arbitration
-monitor
process
and the
NCE server NCE server IP heartbeat
NCE server Any port NCE server 8099 TCP
IP address address of the
arbiter-
monitor
between
the active
and
standby
clusters.
The port
is a port
open for
DTPServi
ce (the
correspon
ding
process
NCE server NCE server IP
NCE server Any port NCE server 19130 TCP name is
IP address address
DTPServi
ce), which
provides
distributed
transactio
n cluster
managme
nt.
This port
is listened
to by the
devicedb
service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16431 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
The port
used by
the
OMPubSe
rvice karaf
process
provides
NCE server NCE server IP the remote
NCE server Any port NCE server 7210 TCP
IP address address call
service for
file
transfer or
communic
ation in
SSL
mode.
The port
used by
the
Northbou
ndCommu
nicationSe
rvice karaf
process
NCE server NCE server IP provides
NCE server Any port NCE server 7211 TCP
IP address address the remote
call
service for
file
transfer or
communic
ation in
SSL
mode.
This port
is listened
to by the
commond
b service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16432 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
localdb
service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16433 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
fmlogdb
service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16434 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
fcapsdb
service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16435 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
secmdb
service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16438 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
This port
is listened
to by the
omdb
service
instance
and
receives
connectio
NCE server NCE server IP
NCE server Any port NCE server 16439 TCP n requests
IP address address
from
clients.
The port
is used to
transfer
data in an
upgrade
scenario.
The port
used by
the karaf
process
provides
the service
NCE server NCE server IP
NCE server Any port NCE server 19120 TCP for
IP address address
message
transfer or
communic
ation
among
nodes.
The port
used by
the
ACMenuS
erviceproc
ess
provides
the node
NCE server NCE server IP
NCE server 19177 NCE server 19177 TCP conmunic
IP address address
ation
service for
file
transfer or
communic
ation in xx
(SSL)
mode.
The port
used by
the
Northbou
ndCommu
nicationSe
rvice karaf
process
NCE server NCE server IP provides
NCE server Any port NCE server 26321 TCP
IP address address the remote
call
service for
file
transfer or
communic
ation in
SSL
mode.
The port
used by
the
OMPubSe
rvice karaf
process
provides
NCE server NCE server IP the remote
NCE server Any port NCE server 26320 TCP
IP address address call
service for
file
transfer or
communic
ation in
SSL
mode.
Port for
forwardin
g mobile
app
NCE server NCE server IP pushing
NCE server Any port NCE server 30111 TCP
IP address address messages
between
NCE
services
over SSL.
This port
is an open
port for
DmqKafk
aService,
NCE server NCE server IP
NCE server Any port NCE server 9094 TCP which
IP address address
provides a
distributed
message
bus
service.
This port
is listened
by
U2kProxy
Service,
and
reversely
proxies
rest
requests
from the
third
parties
(such as
utraffic) in
SSL(TLS
v1.2)
mode. The
NCE server NCE server IP
NCE server Any port NCE server 13161 TCP third party
IP address address
client will
be able to
communic
ate with
internal
services
(such as
AgentInte
gratServic
e) through
this
service
after
bidirectio
nal
certificate
authentica
tion.
Bi-
directional
authentica
tion port
provided
by
U2kProxy
Service
NCE server NCE server IP for
NCE server Any port NCE server 13170 TCP
IP address address uTraffic to
connect
with NCE,
forwards
requests
from
utraffic
related to
IPFPM.
The port
is used by
the Etcd
process.Pr
NCE server NCE server IP ovide the
NCE server Any port NCE server 2379 TCP
IP address address distribute
lock and
leader
election
service.
The port
is used by
the Etcd
process.Pr
NCE server NCE server IP ovide the
NCE server Any port NCE server 2480 TCP
IP address address distribute
lock and
leader
election
service.
UIBacken
d process
port,
which
provides
NCE server NCE server IP the
NCE server Any port NCE server 8100 TCP
IP address address foregroun
d GUI
display
service for
what-if
analysis.
NwDataS
ync
process
port,
which
provides
NCE server NCE server IP the
NCE server Any port NCE server 11300 TCP
IP address address backgroun
d service
for
southboun
d data
synchroni
zation.
UIService
process
port,
which
provides
the
backgroun
NCE server NCE server IP d service
NCE server Any port NCE server 10100 TCP
IP address address and
topology
caching
function
for
foregroun
d GUI
display.
ParseInfS
ervice
process
port,
NCE server NCE server IP which
NCE server Any port NCE server 9200 TCP
IP address address provides
the
topology
restoration
service.
SinglePars
eService
process
port,
NCE server NCE server IP
NCE server Any port NCE server 8200~8202 TCP which
IP address address
provides
the data
parsing
service.
SingleTraf
ficService
process
port,
NCE server NCE server IP which is
NCE server Any port NCE server 8500 TCP
IP address address used to
process
traffic-
related
services.
WhatIfAn
alyseServi
ce process
port,
NCE server NCE server IP
NCE server Any port NCE server 11400 TCP which
IP address address
provides
the what-
if analysis
service.
The port
used by
the karaf
process
provides
the service
NCE server NCE server IP
NCE server Any port NCE server 19128 TCP for
IP address address
message
transfer or
communic
ation
among
nodes.
Jetty
listening
port in
DTPServi
NCE server NCE server IP ce
NCE server Any port NCE server 19136 TCP
IP address address process,
providing
https
access
service.
The port
used by
the
SMPMQS
ervice
process
provides
NCE server NCE server IP 30107~3010
NCE server Any port NCE server TCP the
IP address address 9
SMPMana
gerService
service for
data
transfer in
SSL
mode.
The port
used by
the
NMQZoo
keeperSer
vice
NCE server NCE server IP
NCE server Any port NCE server 2185 TCP process
IP address address
provides
the
election
service for
kafka
service
The port
used by
the
NMQZoo
keeperSer
vice
NCE server NCE server IP
NCE server Any port NCE server 3878 TCP process
IP address address
provides
the
election
service for
zookeeper
service.
The port
used by
the
NMQZoo
keeperSer
vice
process
NCE server NCE server IP provides
NCE server Any port NCE server 2878 TCP
IP address address the
communic
ation
service for
zookeeper
leader and
follower
node.
The port
NCE server NCE server IP used by
NCE server Any port NCE server 26311 TCP
IP address address mczkapp
process.
The port
NCE server NCE server IP used by
NCE server Any port NCE server 26312 TCP
IP address address mczkapp
process.
The
ODAEAc
cessPoint
Service
listening
port is
used to
detect the
NCE server NCE server IP
NCE server Any port NCE server 26404 TCP survival
IP address address
status of
the
heartbeat
managem
ent port in
a multi-
plane
scenario.
used by
the BGP
Service
process
provides
the
internal
NCE server NCE server IP
NCE server Any port NCE server 7777 UDP connectio
IP address address
n service
for
componen
t
communic
ation in
UDP
used by
the IPTE
Service
process
provides
the
internal
NCE server NCE server IP
NCE server Any port NCE server 6666 UDP connectio
IP address address
n service
for
componen
t
communic
ation in
UDP
The port
used by
the BGP
Service
process
provides
NCE server NCE server IP the
NCE server Any port NCE server 8085 TCP
IP address address internal
Restful
service for
componen
ts in
HTTP(S)
mode.
The port
used by
the IPTE
Service
process
provides
NCE server NCE server IP the
NCE server Any port NCE server 8087 TCP
IP address address internal
Restful
service for
componen
ts in
HTTP(S)
mode.
This port
is an open
port for
NetconfCl
ientServic
e
(correspon
ding to the
NCE server NCE server IP process
NCE server Any port NCE server 19126 TCP
IP address address name
NetconfCl
ientServic
e). This
service
provides
Http 2.0
functional
ity.
used by
the PCE
Service
process
provides
the
internal
NCE server NCE server IP
NCE server Any port NCE server 8888 UDP connectio
IP address address
n service
for
componen
t
communic
ation in
UDP
used by
the PCEP
Service
process
provides
the
internal
NCE server NCE server IP
NCE server Any port NCE server 9999 UDP connectio
IP address address
n service
for
componen
t
communic
ation in
UDP
The port
used by
the
TCClientS
ervice
process
provides
communic
NCE server NCE server IP 17100~1710 ation
NCE server Any port NCE server TCP
IP address address 1 between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
ACTServi
ce process
provides
communic
ation
NCE server NCE server IP 17102~1710
NCE server Any port NCE server TCP between
IP address address 3
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCMwRe
sourceSer
vice
process
provides
communic
NCE server NCE server IP 17104~1710
NCE server Any port NCE server TCP ation
IP address address 5
between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCMwEli
neService
process
provides
communic
NCE server NCE server IP 17106~1710 ation
NCE server Any port NCE server TCP
IP address address 7 between
the
primary
and
backup
service
instances
in (SSL)
mode.
Transport,
TCP port
on behalf
of the
communic
NCE server NCE server IP
NCE server Any port NCE server 9401 TCP ation port,
IP address address
that is,
external
access
port of
ES.
The port
used by
the
TCAlgorit
hmService
process
provides
communic
NCE server NCE server IP 17108~1710 ation
NCE server Any port NCE server TCP
IP address address 9 between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCSDHSe
rvice
process
provides
communic
NCE server NCE server IP ation
NCE server Any port NCE server 17110~17111 TCP
IP address address between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCETHSe
rvice
process
provides
communic
NCE server NCE server IP ation
NCE server Any port NCE server 17112~17113 TCP
IP address address between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
used by
the
TCNRAS
ervice
process
provides
communic
NCE server NCE server IP ation
NCE server Any port NCE server 17114~17115 TCP
IP address address between
the
primary
and
backup
service
instances
in (SSL)
mode.
The port
is opened
for
ODAEAc
cessPoint
Service(co
rrespondin
g proccess
NCE server NCE server IP name is
NCE server 30209 NCE server 27450 TCP
IP address address odaeacces
spointserv
ice), and
is used to
receive
the
reported
performan
ce data.
The port
is opened
for
TrafficCol
lectorServ
ice(corres
ponding
proccess
name is
NCE server NCE server IP
NCE server Any port NCE server 13816 TCP trafficcoll
IP address address
ectorservi
ce), and is
used to
receive
the
inventory
request of
the
collector.
The port
is opened
for
SBIBridge
Service(co
rrespondin
g proccess
name is
NCE server NCE server IP sbibridges
NCE server Any port NCE server 8080 TCP
IP address address ervice),
and is
used to
receive
the
collection
configurat
ion
request.
ProtoInfS
ervice
process
port,
NCE server NCE server IP which
NCE server Any port NCE server 8400 TCP
IP address address provides
the
protocol
restoration
service.
SingleSim
Service
process
port,
NCE server NCE server IP
NCE server Any port NCE server 8700~8701 TCP which
IP address address
provides
the
simulation
service.
By
listening
this port,
DpiHwSta
NCE server NCE server IP ndardServ
NCE server Any port NCE server 30117 TCP
IP address address ice can
receive
data from
MqttServi
ce.
Heartbeat
NCE server NCE server IP link
NCE server 32031 NCE server 32031 TCP
IP address address listening
port.
Data
NCE server NCE server IP synchroni
NCE server 32032 NCE server 32032 TCP
IP address address zation
port
Port
30087 is
open by
the
managem
ent plane
NCE server NCE server IP
NCE server Any port NCE server 30087 UDP and is
IP address address
used to
send alerts
to the
product
alert
service.
The
OpenEMS
ervice
process
routedrpc
port
provides
the
routedrpc
NCE server NCE server IP service.
NCE server Any port NCE server 19117 TCP
IP address address Used to
communic
ate across
componen
ts in
standalone
or
clustered
deployme
nt mode.
Port for
marine
NE
managem
ent
processes.
This port
is used for
communic
NCE server NCE server IP
NCE server Any port NCE server 11113~11114 TCP ation
IP address address
between
NEs and
the Web-
Nemgr
and
ASON
managem
ent
process.
Port for
transport
NE
managem
ent
processes.
This port
is used for
communic
NCE server NCE server IP
NCE server Any port NCE server 11001~11112 TCP ation
IP address address
between
NEs and
the Web-
Nemgr
and
ASON
managem
ent
process.
Port for
transport
NE
managem
ent
processes.
This port
is used for
communic
NCE server NCE server IP
NCE server Any port NCE server 13331 TCP ation
IP address address
between
NEs and
the Web-
Nemgr
and
ASON
managem
ent
process.
Listening Port
Encryption Special
Configurable Authentication Mode Version
Mode Scenario
(Y/N)
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Not Concerning User Name/Password SSH None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes User Name/Password SSH None
00 and later
None: standard protocol NCEV1R18C
No None None
(application layer protocol) 00 and later
None: standard protocol NCEV1R18C
No None None
(application layer protocol) 00 and later
None: standard protocol NCEV1R18C
No None None
(application layer protocol) 00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
In
distributed
scenarios,
this port is
used for
NCEV1R18C
No Digital certificate (one-way) SSL/TLS application
00 and later
nodes to
communica
te with
manageme
nt nodes.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Token SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
NCEV1R18C
No User Name/Password SSL/TLS None
00 and later
NCEV1R18C
No Token SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
None: standard protocol NCEV1R18C
No None None
(application layer protocol) 00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
NCEV1R18C
No None SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
Distributed
NCEV1R18C access
No Digital certificate (two-way) HTTPS
00 and later node HA
scenario
Distributed
NCEV1R18C access
No Digital certificate (two-way) HTTPS
00 and later node HA
scenario
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
Used in
NCEV1R18C distributed
No Digital certificate (two-way) SSL/TLS
00 and later HA
scenarios.
Used in
NCEV1R18C distributed
No Digital certificate (two-way) SSL/TLS
00 and later HA
scenarios.
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No None SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
This port is
used for
heartbeat
communica
tion
NCEV1R18C
No Digital certificate (two-way) SSL/TLS between
10 and later
two
clusters in
remote
disaster
recovery.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
Yes Digital certificate (two-way) HTTPS None
10 and later
The port is
used to
transfer
data in an
upgrade
Only
scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C
he port is
10
automatical
ly disabled
after
migrating
data.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
The port is
used to
transfer
data in an
upgrade
Only scenario.T
No Digital certificate (two-way) SSL/TLS NCEV1R18C he port is
10 automatical
ly disabled
after
migrating
data.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
Yes Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (one-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
This port is
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
10 and later where
NCE-super
is
deployed.
NCEV1R18C
No None None None
10 and later
NCEV1R18C
No None None None
10 and later
NCEV1R18C
No Digital certificate (two-way) HTTPS None
10 and later
NCEV1R18C None
No Digital certificate (two-way) HTTPS
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No None None None
10 and later
NCEV1R18C
No None None None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
It is
applicable
only to the
versions from
Yes Digital certificate (two-way) SSL/TLS None
NCEV1R18C
00 to
NCEV1R18C
10.
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
Used in
NCEV1R18C distributed
No Digital certificate (two-way) SSL/TLS
10 and later HA
scenarios.
Used in
NCEV1R18C distributed
No Digital certificate (two-way) SSL/TLS
10 and later HA
scenarios.
NCEV1R18C
No User Name/Password SNMPV3 None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
10 and later
NCE- /
AnalyzerKafkaService analyzerkafkasvc NetworkIn opt/oss/NCE/apps/AnalyzerKafkaServ None
sight ice/tools/kafka/config
NCE- /
AnalyzerKafkaService analyzerkafkasvc NetworkIn opt/oss/NCE/apps/AnalyzerKafkaServ None
sight ice/tools/zookeeper/config
NCE-
UtrafficBasicService utrafficbasicservice NetworkIn None None
sight
NCE-
DisasterRecoveryService DisasterRecoveryService NetworkIn None None
sight
NCE-
NBIBridgeService NBIBridgeService NetworkIn None None
sight
NCE-
UtrafficBasicService UtrafficBasicService NetworkIn None None
sight
NCE-
TrafficCollectorService TrafficCollectorService NetworkIn None None
sight
NCE-
vsftpd vsftpd NetworkIn None None
sight
CloudSOP-
DHCP dhcpd None None
UniEP
CloudSOP-
TFTP tftpd None None
UniEP
CloudSOP-
DHCP dhcpd None None
UniEP
/
CloudSOP-
ProductMonitorAgent productmonitoragent opt/oss/manager/apps/ProductMonitor None
UniEP
Agent/etc/mcagent.conf/listen_port
/
CloudSOP-
DRMgrService drmgrservice opt/oss/manager/apps/DRMgrService/ None
UniEP
etc/ssl/manifest.json/port
CloudSOP-
UniEPService zookeeperapp None None
UniEP
CloudSOP-
UniEPService zookeeperapp None None
UniEP
CloudSOP-
UniEPService zookeeperapp None None
UniEP
CloudSOP-
UniEPService redis-server None None
UniEP
CloudSOP-
UniEPService redis-server None None
UniEP
CloudSOP-
UniEPService redis-server None None
UniEP
CloudSOP-
UniEPService mysqld/gaussdb/zengine None None
UniEP
CloudSOP-
UniEPService mysqld/gaussdb/zengine None None
UniEP
CloudSOP-
DBHASwitchService switchmgrapp None None
UniEP
CloudSOP-
DeployAgent deployagent None None
UniEP
/opt/oss/manager/apps/DeployAgent-
*/etc/install/default_value.json/IRListe
CloudSOP- nPorts
UniEPService All None
UniEP /opt/oss/envs/Product-
ProductMonitorAgent/service/etc/insta
ll/default_value.json/IRListenPorts
/opt/oss/manager/apps/DeployAgent-
*/etc/install/default_value.json/IRListe
CloudSOP- nPorts
UniEPService All None
UniEP /opt/oss/envs/Product-
ProductMonitorAgent/service/etc/insta
ll/default_value.json/IRListenPorts
CloudSOP-
MCBusService mcir None None
UniEP
CloudSOP-
MCBusService mcir None None
UniEP
CloudSOP-
ServiceCenter sc None None
UniEP
CloudSOP-
Etcd cse-etcd None None
UniEP
CloudSOP-
Etcd cse-etcd None None
UniEP
NCE-T
EtcdService etcd control None None
domain
NCE-T
EtcdService etcd control None None
domain
NCE-T
DmqService kafka control None None
domain
NCE-T
DmqService zookeeper control None None
domain
NCE-IP
ACService karaf control configuration/initial/akka.conf None
domain
Configuration file:
<Installation directory>/product
name/apps/ODAEDBLoaderService/et
ODAEDBLoaderService odaedbloaderservice CloudSOP None
c/odae/loader.properties
Configuration items:
gds.port: gds port
NCE-T CloudPCEOneTrack\codej\TSDNDriv
TSDNDriverService trdriver control erService\deployment\src\main\release None
domain \pub\app_define.json
NCE-T
DBSVRACTSYNC\DBSV
ACTService control None None
RACTASYNC
domain
NCE-T
DmqService zookeeper control None None
domain
/opt/oss/envs/Product-
VIPService VIPService AC-BP VIPService/XXXXX/pub/app_define.j None
son
$
NorthboundCommunicatio NorthboundCommunicatio
AC-BP {APP_ROOT}/controller/configuratio None
nService nService
n/initial/akka.conf
/opt/oss/envs/Product-
ACMenu ACMenuService AC-BP ACMenuService/{time- None
shot}/controller/configuration/initial
NorthboundCommunicatio NorthboundCommunicatio $
AC-BP None
nService nService {APP_ROOT}/controller/etc/jetty.xml
$
OMPubService OMPubService AC-BP None
{APP_ROOT}/controller/etc/jetty.xml
NCE-FAN
LHNodeJSService LHNodeJSService manageme None None
nt domain
/
opt/oss/NCECOMMONE/apps/DmqK
DmqKafkaService DmqKafkaService AC-BP None
afkaService/tools/kafka/config
listeners
$
{APP_ROOT}/etc/nginx/conf/nginx_c
NCE- ross.conf
U2kProxyService U2kProxyCross None
Common listen $
(LOCALHOST_FLOATSERVERNA
ME):13161;
$APP_ROOT/etc/nginx/conf/nginx_p
ms.conf
listen $
U2kProxyService U2kProxyPms PMS None
(LOCALHOST_FLOATSERVERNA
ME):13170;
listen 127.0.0.1:13170;
/opt/oss/envs/Product-EtcdService/
{time-
shot}/conf/etcd_server.properties/adve
rtise_client_urls
EtcdService Etcd AC-BP None
/opt/oss/envs/Product-EtcdService/
{time-
shot}/conf/etcd_server.properties/liste
n_client_urls
/opt/oss/envs/Product-EtcdService/
{time-
shot}/conf/etcd_server.properties/initia
l_advertise_peer_url
/opt/oss/envs/Product-EtcdService/
{time-
EtcdService Etcd AC-BP None
shot}/conf/etcd_server.properties/liste
n_peer_urls
/opt/oss/envs/Product-EtcdService/
{time-
shot}/conf/etcd_server.properties/initia
l_cluster
NCE-
SMPMQService SMPMQService None None
Common
/opt/oss/envs/Product-
FANSouthService/
FAN-South FAN-South FAN-South {time_shot}/controller/configuration/i None
nitial/akka.conf
RPC_CLUSTER_PORT
/var/share/oss/NCECOMMONE/NMQ
NMQZookeeperService NMQZookeeperService AC-BP None
ZookeeperService/conf/zoo.cfg
clientPort
/
NMQZookeeperService NMQZookeeperService AC-BP var/share/oss/NCECOMMONE/NMQ None
ZookeeperService/conf server.x
<OSS_ROOT>/manager/apps/MCZK
Service/upgrade/zoo.cfg config item:
server.0 server.1 and server.2
CloudSOP-
MCZKService mczkapp <OSS_ROOT>/manager/apps/MCZK None
UniEP
Service/pub/app_define.json config
item:“""parameters"":""ZookeeperSer
vice.PortList"":""default""”
<OSS_ROOT>/manager/apps/MCZK
Service/upgrade/zoo.cfg config item:
server.0 server.1 and server.2
CloudSOP- <OSS_ROOT>/manager/apps/MCZK
MCZKService mczkapp None
UniEP Service/pub/app_define.json config
item:“""""parameters"""":""""Zookeep
erService.PortList"""":""""default""""”
"
/etc/conf/config.properties
ODAE odaeaccesspointservice CloudSOP None
lvs_manager_port
NCE-IP
BgpService cloudbgp control None None
domain
NCE-IP
IPTE IPTE control None None
domain
NCE-IP
BGP BGP control None None
domain
NCE-IP
IPTE IPTE control None None
domain
$
NetconfClientService NetconfClientService AC-BP None
{APP_ROOT}/controller/etc/jetty.xml
NCE-IP
PCEMicroService PCE control None None
domain
NCE-IP
PcepService PCEP control None None
domain
NCE-T /
TCClientService TCClientService control opt/oss/NCE/apps/TCClientService/pu None
domain b/app_define.json
NCE-T /
ACTService ACTService control opt/oss/NCE/apps/ACTService/pub/ap None
domain p_define.json
NCE-T /
TCMwResourceService TCMwResourceService control opt/oss/NCE/apps/TCMwResourceSer None
domain vice/pub/app_define.json
NCE-T /
TCMwElineService TCMwElineService control opt/oss/NCE/apps/TCMwElineService None
domain /pub/app_define.json
/
DPAElasticSearchService DPAElasticSearchService CloudSOP opt/oss/Product/apps/DPAElasticSearc None
hService/es/config/elasticsearch.yml
NCE-T /
TCAlgorithmService TCAlgorithmService control opt/oss/NCE/apps/TCAlgorithmServic None
domain e/pub/app_define.json
NCE-T /
TCSDHService TCSDHService control opt/oss/NCE/apps/TCSDHService/pub None
domain /app_define.json
/
NCE-T
opt/oss/NCE/apps/TCETHService/pub
TCETHService TCETHService control None
/app_define.json
domain
NCE-T /
TCNRAService TCNRAService control opt/oss/NCE/apps/TCNRAService/pub None
domain /app_define.json
NCE-
ODAEAccessPointService odaeaccesspointservice NetworkIn None None
sight
NCE-
TrafficCollectorService trafficcollectorservice NetworkIn None None
sight
NCE-
SBIBridgeService sbibridgeservice NetworkIn None None
sight
/
CloudSOP- opt/oss/manager/apps/OMMHAServic
OMMHAService ommha None
UniEP e/module/haarb/conf/haarb.xml/ippair-
>node->port
/
CloudSOP- opt/oss/manager/apps/OMMHAServic
OMMHAService ommha None
UniEP e/module/hasync/conf/hasync.xml/ippa
ir->link->ippair->port
The
engrnotifys
/ ervice.cfg
opt/oss/manager/var/etc/engrnotifyserv file is not
CloudSOP- ice/engrnotifyservice.cfg/NBI_IP available
UniEPService uniepservice
UniEP / by default
opt/oss/manager/var/etc/engrnotifyserv and needs
ice/engrnotifyservice.cfg/NBI_PORT to be
customized
.
/opt/oss/envs/Product-
NCE-IP
OpenEMService/
OpenEMService OpenEMService manageme None
{time_shot}/controller/configuration/i
nt domain
nitial/akka.conf port
NCE-T
NemgrMarineService nemgr_marine manageme None None
nt domain
NCE-T
NemgrTransService nemgr_trans manageme None None
nt domain
NCE-T
NemgrV8transService nesvc_v8trans manageme None None
nt domain
Source Source IP Source Destinatio Destination Destination Port
Protocol
Device Address Port n Device IP Address Port Description
The client proxy
service listens to
the port and
Client IP Client IP
Client Any port Client 31942 TCP provides the
address address
ability to
communicate with
the portal.
Client IP Client IP Communicate
Client Any port Client 34455 TCP
address address with the client.
The port used by
the
sqmprobemgrserv
NE IP 49152~55 NCE server IP
NEs NCE server 12208 TCP ice process
address 535 address
provides the
management
service for prober.
NTP is a standard
protocol without
any authentication
mechanism. This
port is used to
synchronize
clocks of all other
clients. The NTP
server
synchronizes the
clock of the local
system with a
public NTP server
NTP server NCE server IP and then functions
NTP server Any port NCE server 123 UDP
IP address address as the time host to
provide services.
In this way, clocks
of all clients on
the local network
can be
synchronized.
This ensures that
the time of each
Agent application
node is the same.
This port is an
NTP listening
port.
SSH service port.
VMware Log in to the
VMware vSphere ESXi server server through
Any port ESXi server 22 TCP
vSphere clients clients IP IP address SSH to perform
address maintenance
operations.
VMware
VMware vSphere ESXi server
Any port ESXi server 53 TCP DNS client
vSphere clients clients IP IP address
address
VMware vSphere Web
VMware vSphere ESXi server Client to ESXi
Any port ESXi server 443 TCP
vSphere clients clients IP IP address Host Management
address Connection
VMware
VMware vSphere ESXi server vCenter Server
Any port ESXi server 902 TCP,UDP
vSphere clients clients IP IP address Agent port
address
Third-party
Third-party NCE server IP This port is used
server IP Any port NCE server 27400 TCP
server address for reporting data.
address
NCE acts as a
client and does
not involve
ActiveDirecto
ActiveDirect listening. The port
ry
NCE server ory Specified port provided by the
NCE server Any port authentication TCP
IP address authenticatio on the server third-party AD
server IP
n server server for AD
address
authentication.
The port default is
636
NCE acts as a
client and does
not involve
RADIUS listening. The port
RADIUS
NCE server authentication Specified port provided by the
NCE server Any port authenticatio UDP
IP address server IP on the server third-party Radius
n server
address server for Radius
authentication.
The default port is
1812.
Listening Port Encryption Special
Authentication Mode Version
Configurable (Y/N) Mode Scenario
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
No None None None
00 and later
NCEV1R18C
No Digital certificate (two-way) SSL/TLS None
00 and later
Used in a
distributed
scenario,
this
None: standard protocol NCEV1R18C
No None describes
(application layer protocol) 00 and later
the usage
scenario of
ntp as a
server.
NCEV1R18C
No User Name/Password SSH None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password SSL/TLS None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password SNMPV3 None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No User Name/Password None None
00 and later
NCEV1R18C
No None SSL/TLS None
00 and later
This port is
only
applies to
NCEV1R18C scenarios
No Public key SSL/TLS
00 and later where
NCE-super
is
This port is
deployed.
only
applies to
NCEV1R18C scenarios
No Digital certificate (two-way) SSL/TLS
00 and later where
NCE-super
is
deployed.
NCEV1R18C
No Digital certificate (two-way) HTTPS None
00 and later
NCEV1R18C
Yes User Name/Password SSL/TLS None
10 and later
NCEV1R18C
Yes Preshared key None None
10 and later
Configuration File and
Service Process Component Remarks
Parameter
NCE- webproxy\proxyService\jetty.propertie
webswing None None
Common s
NCE-
webproxy None None None
Common
NCE-
Analyzer
SQMProbemgrService sqmprobemgrservice NetworkInsigh None
Node
t
0.0.0.0
Standard
NTP
service
port 123
cannot be
bound to
fixed IP
addresses.
To secure
the system,
use OS-
provided
iptables to
set an IP
address
whitelist.
Only the IP
CloudSOP- addresses
NTP ntpd None
UniEP in this
whitelist
can access
port 123 in
the NTP
service
network
segment.If
the
network
segment of
the NTP
service
changes,
modify the
iptables
settings
accordingly
.
SSH sshd NCE-Engineer None None
CloudSOP-
UniEPService uniepservice None None
UniEP
Configuration item
processes/ber/protocols/BER in
<Installation directory>/
{tenant}/apps/BackendERService/pub/
app_define.json
BackendERService ber CloudSOP PaaS port
Configuration item processes/ber-{0}-
{0}/BER in <Installation directory>/
{tenant}/apps/BackendERService/etc/s
ysconf/BackendERService-
{version}.json
FTP serves
the general
port.
NCE User
NCE EasySuiteI Installation
server IP Any port EasySuite 21 TCP No Name/Pass
server P files are
address word
downloade
d through
FTP.
When the
network
installs the
NCE
NCE EasySuiteI operating
server IP Any port EasySuite 69 UDP No None
server P system, use
address
the TFTP
transfer
file.
When the
operating
system is
installed in
NCE a network
NCE EasySuiteI
server IP Any port EasySuite 67 UDP mode, the No None
server P
address DHCP
service is
needed to
allocate the
IP address.
When the
operating
system is
installed in
a network
mode, the
DHCP
NCE
NCE EasySuiteI service is
server IP Any port EasySuite 68 UDP No None
server P needed to
address
allocate the
IP address,
and 68 is
the DHCP
service
transmissio
n port.
NCEV1R1
NCE-
None 8C00 and None EasySuite FTP None None
Engineer
later
NCEV1R1
NCE-
None 8C00 and None EasySuite TFTP None None
Engineer
later
NCEV1R1
NCE-
None 8C00 and None EasySuite DHCP None None
Engineer
later
NCEV1R1
NCE-
None 8C00 and None EasySuite DHCP None None
Engineer
later
NCE acts
as a client
and does
not involve
listening.
ActiveDire The port
ActiveDire
NCE ctory Specified provided User
NCE ctory
server IP Any port authenticati port on the TCP by the Yes Name/Pass
server authenticati
address on server server third-party word
on server
IP address AD server
for AD
authenticati
on. The
port default
is 389
The port is
opened for
snmp agent
service,
which
process
name is
Northboun
dCommuni
cationServi
ce. The
service
supported
NCE SNMP Specified the Token;User
NCE SNMP
server IP 1161 server IP port on the UDP function of No Name/Pass
server server
address address server reporting word
trap and
the data
source the
third
devices are
insterested
in, so the
third
device can
receive trap
or acquire
the data
they want.
northbound
distributed
message
bus
service.
Service
scenario: 1.
The third-
party
server is a
Kafka
client, and
performs
business
interaction
with the
north-
Third-party NCE facing Digital
Third-party NCE
server IP Any port server IP 9095 TCP Kafka No certificate
server server
address address server (two-way)
inside the
NCE. 2.
The NCE
internal
north-
facing
Kafka
client
performs
business
interaction
with the
north
Kafka
server.
(The
source
This port is
an open
port for the
Northboun
dCommuni
cationServi
ce. This
service
provides a
NCE Third-party Specified northbound Digital
NCE Third-party
server IP Any port server IP port on the TCP message Yes certificate
server server
address address server queue data (two-way)
transfer
function
through
which
clients can
access
third-party
Kafka
servers.
authenticati
on
mechanism
. This port
is used to
synchroniz
e clocks of
all other
clients. The
NTP server
synchroniz
es the
clock of
the local
system
with a
public NTP None:
server and standard
NCE
NCE NTP server then protocol
server IP Any port NTP server 123 UDP No
server IP address functions (applicatio
address
as the time n layer
host to protocol)
provide
services. In
this way,
clocks of
all clients
on the local
network
can be
synchroniz
ed. This
ensures
that the
time of
each Agent
application
node is the
Report
syslog
messages
to the
NCE Third-party ICBC
NCE Third-party
server IP Any port server IP 514 UDP syslog No None
server server
address address server.
Don's
support
receive
data.
userdb.US
ER_SERVI
NCEV1R1
smloglicser CE_CONF
SSL/TLS 8C00 and None SMLogLic CloudSOP None
vice IGURATI
later
ON.CONF
IG
userdb.US
ER_SERVI
NCEV1R1
smloglicser CE_CONF
None 8C00 and None SMLogLic CloudSOP None
vice IGURATI
later
ON.CONF
IG
syslogdb.S
YSLOG_S
NCEV1R1
smloglicser ERVER.M
SSL/TLS 8C00 and None SMLogLic CloudSOP None
vice ASTERPO
later
RT/SLAVE
PORT
NCEV1R1
AuthServic
None 8C10 and None AuthMgMt AC-BP None None
e
later
Northboun Northboun
NCEV1R1
dCommuni dCommuni
SNMPV3 8C10 and None AC-BP None None
cationServi cationServi
later
ce ce
/
opt/oss/NC
ECOMMO
NCEV1R1
NMQKafk NMQKafk NE/apps/N
SSL/TLS 8C10 and None AC-BP None
aService aService MQKafkaS
later
ervice/tools
/kafka/conf
ig listeners
Northboun Northboun
NCEV1R1
dCommuni dCommuni
SSL/TLS 8C10 and None AC-BP None None
cationServi cationServi
later
ce ce
0.0.0.0
Standard
NTP
service
port 123
cannot be
bound to
fixed IP
addresses.
To secure
the system,
use OS-
provided
iptables to
set an IP
Used in a address
distributed whitelist.
scenario, Only the IP
NCEV1R1
where ntp CloudSOP- addresses
None 8C00 and NTP ntpd None
is used as a UniEP in this
later
client whitelist
usage can access
scenario. port 123 in
the NTP
service
network
segment.If
the
network
segment of
the NTP
service
changes,
modify the
iptables
settings
accordingly
.
1. For the list of internal ports that must be opened for the SRM and VR, see http://kb.vmware.com/kb/1009562.
2. For the list of internal ports that must be opened for the VMware, see http://kb.vmware.com/kb/1012382.
454553617.xlsx
om/kb/1009562.
kb/1012382.