D.4 Extended Port Chart Including Port Usage

The following table shows the individual ports required to be open, the description of each port, etc.

This is an extended version of the information in Section 3.6, Ports Used by ZENworks Components.

Table D-1 ZENworks Ports Usage

Port

Type

From

To

Description

Initiated By

Duration

80

TCP

ZENworks Adaptive Agent

Primary Server or Satellite

Used to download content from Primary Server or Satellite.

Used to upload inventory, message data, patch results, etc to a Satellite.

Used to download content from Primary Server to Satellite during content replication.

Used to roll up the collection data from Satellite to Primary Server.

ZENworks Adaptive Agent

HTTP listener is active until the ZENServer service runs.

Active until the completion of the HTTP GET or PUT request.

443

TCP

ZENworks Adaptive Agent

Management workstation

Imaging Satellite

Primary Server or Authentication Satellite

Used mostly for agent communication with the server including authentication, configuration requests, assignments, and registration.

Used to send authentication requests to the Satellite server.

Hosts ZENworks Control Center.

Used by zman to communicate to the administrative Web services on the server.

ZENworks Adaptive Agent or Management workstation

HTTPS listener is active until the ZENServer service runs

Active only when an authentication request occurs.

2645

TCP

ZENworks Adaptive Agent

Primary Server

Used for authentication when CASA servlet is not available on 443. This occurs if the ZENServer instance of Tomcat is busy to service the CASA authentication token requests.

Agent (CASA Authentication Token Service)

Listener is active until the CASA instance of Tomcat runs.

Active only when an authentication request occurs.

67/4011

UDP

Device that is PXE booted

DHCP Sever and Primary Server or Imaging Satellite

The DHCP port is used to request for DHCP and PXE boot information. 4011 is used only if the DHCP server is the ZENworks server as well.

PXE Boot ROM

Listener is active if the Proxy DHCP service is running on the Primary Server or Satellite.

Listens for all broadcasts.

69

UDP

Device that is PXE booted

Primary Server or Imaging Satellite

The TFTP port is used to download PXE boot files and other imaging files as described in bundles.

PXE Boot ROM

ZENworks Network Boot Program

ZENworks Imaging Engine

WindowsPE Boot Loader

WindowsPE ZENworks Work To Do application

Listener is active if the TFTP service is running on the Primary Server or Satellite.

Active only when GET or PUT requests are received from the agent.

13331

UDP

Device that is PXE booted and finds ZENworks Boot program

Primary Server or Imaging Satellite

Preboot Services lookup port.

Used by the PXE boot program as a proxy to the Imaging server. This is required because PXE ROM can communicate only through UDP.

ZENworks Network Boot Program on PXE booted device

Listener is active if the ZENworks Preboot Policy service is running.

998

TCP / UDP

Device that requests for the imaging work

Used to identify the imaging work that needs to be performed and when images are to be sent or received. Generally, the request is from the device that is imaged to the Imaging server. In the case of Preboot Services, forwarding a server in Zone 1 would contact a server in Zone 2 specified in the forwarding list.

UDP is used while performing multicast imaging operations.

ZENworks Imaging Distribution

Windows PE ZENworks Work To Do application

From Primary Server in Zone 1 to Primary Server in Zone 2.

Listener is active until the Novell Preboot Service runs.

Active only during the imaging operations or work to do.

5950

TCP

Management Workstation

Remote Management Proxy

ZENworks Adaptive Agent

 

 

 

5550

TCP

Managed Device

Management Workstation

Remote Management listener on the Management workstation. This allows users at managed devices to request assistance from the administrator on the Management workstation.

ZENworks Remote Management requester

Listener is active after installed.

Connection is active when a user requests assistance.

5750

TCP

Management Workstation

Remote Management Proxy

Remote Management proxy listener. This allows a user connecting through NAT to remote manage a device that can be accessed by the proxy. The Management workstation connects to the proxy on 5750 and the proxy connects to the managed device on 5950.

ZENworks Control Center when initiating a remote management connection through a Remote Management proxy.

Listener is active on the device where you install the Remote Management proxy component.

The connection is active from the time the administrator initiates a connection until the connection ends.

7628

TCP

Primary Server

ZENworks Adaptive Agent

 

 

 

1433

TCP

Primary Server

Microsoft SQL Database

JDBC connection established from Primary Servers to MS SQL.

ZENworks Server and ZENworks Loader services maintain database connections.

Connection is active until the ZENworks Server or Loader runs.

2638

TCP

Primary Server

Sybase Database

JDBC connection established from Primary Servers to Sybase.

ZENworks Server and ZENworks Loader services maintain database connections.

Connection is active until ZENworks Server or Loader runs.

1521

TCP

Primary Server

Oracle Database

JDBC connection established from Primary Servers to Oracle.

ZENworks Server and ZENworks Loader services maintain database connections.

Connection is active until ZENworks Server or Loader runs.

1761

UDP

Used to forward subnet-oriented broadcast magic packets for Wake-On-LAN