A question we often get leading up to deployment or during troubleshooting is: what ports will your inventory and other processes be leveraging on my network? We have a complete list below - but some good news is that these ports are very rarely - if ever - blocked. But without further fanfare, here is the complete list of ports we presently leverage for inventory purposes:
- TCP 135, 1025-5000 and 49152-65535 (WMI)
- TCP 445 (SMB - RPC)
- TCP 1025 (Alternate Netbios)
- TCP port 465 (SSL-Encrypted Email)
- TCP 139 (NetBIOS)
- UDP 137 (NetBIOS)
- TCP 389 (LDAP)
- TCP 636 (LDAPS)
- HTTP 80 (External Data Feeds)
- HTTP/SSL 443 (External Data Feeds + Updates/Patches + External Data/Debug Transfer)
- SSH 22 (OSX + POSIX-Compliant Inventory + CLI access)
- 1521 (Oracle DB Connection)
- UDP 161 & 162 (SNMP)
- WinRM 5985 for HTTP, and 5986 for HTTPS
We will keep this list up to date of course as new protocols and inventory features sometimes involve the addition/changing of the ports we leverage.