Table 7 Ports Used by Prime Infrastructure and Assurance
Port
Protocol
Direction
Usage
7
TCP/UDP
Server to endpoints
Endpoint discovery via ICMP
20, 21
TCP
Bidirectional server/devices
FTP transfer of files to and from devices
Server to Cisco.com
FTP download of files from Cisco.com
22
TCP
Server to endpoints
To initiate SSH connection to endpoints during troubleshooting processes
Client to server
To connect to the Prime Infrastructure server
23
TCP
Server to devices
Telnet communication with devices
25
TCP
Server to SMTP server
SMTP email routing
49
TCP/UDP
Server to TACACS server
Authenticate users using TACACS
53
TCP/UDP
Server to DNS server
DNS
69
UDP
Devices to server
TFTP
161
UDP
Server to devices
SNMP polling
162
TCP/UDP
Endpoints to server
SNMP Trap receiver port
443
TCP
Client to server
Browser access to Prime Infrastructure via HTTPS (enabled by default). This port is also used to check for software updates between the Prime Infrastructure server and cisco.com.
514
UDP
Devices to server
Syslog server
1099
TCP/UDP
AAA server to server
RMI registry
1522
TCP/UDP
Primary to secondary server, Secondary to primary server
To configure high availability database connection between the primary and secondary Prime Infrastructure
1645
UDP
Server to RAS
Authenticate Prime Infrastructure users via RADIUS Remote Access Server
1646
RAS to server
1812
Server to RAS
1813
RAS to server
4444
TCP
AAA server to server
RMI server
8082
TCP
Client to server
Health Monitor web interface, Apache/Tomcat JSP engine
8087
TCP
Client to server
Secondary server software update page
9991
UDP
Devices to server
NetFlow data receiver
Note Used when the Plug and Play Gateway is integrated with the Prime Infrastructure server.
10022 to 10041
TCP
Devices to server
Range of ports used for passive FTP file transfers (controller backups, device configurations, report retrieval, and so on)
11011
TCP
Endpoints to server
Plain text dispatcher port for the Plug and Play Gateway
Note Used when the Plug and Play Gateway is integrated with the Prime Infrastructure server.
11012
SSL dispatcher port for the Plug and Play Gateway
11013
Plain text plug and play port
11014
SSL port for the Plug and Play Gateway
61617
TCP
Server to endpoints
SSL port for Java Message Service connections
Note Used by the Prime Infrastructure Plug And Play Gateway only.