Configuring Communication Ports

Most of the communication between devices on the remote site and Aruba Central server is carried out through HTTPSHypertext Transfer Protocol Secure. HTTPS is a variant of the HTTP that adds a layer of security on the data in transit through a secure socket layer or transport layer security protocol connection. (TCPTransmission Control Protocol. TCP is a communication protocol that defines the standards for establishing and maintaining network connection for applications to exchange data. 443). However, verify if the ports listed in Table 1 are open to allow the Aruba Central server and the managed devices to communicate over a network firewallFirewall is a network security system used for preventing unauthorized access to or from a private network..

By default, AP contacts pool.ntp.org to synchronize using NTPNetwork Time Protocol. NTP is a protocol for synchronizing the clocks of computers over a network.. The administrators can configure any other NTP server or IP address.

Table 1: Domain Names and Ports for Aruba Central
Protocol and port	Domain Names and Purpose
UDPUser Datagram Protocol. UDP is a part of the TCP/IP family of protocols used for data transfer. UDP is typically used for streaming media. UDP is a stateless protocol, which means it does not acknowledge that the packets being sent have been received. port 123	To access pool.ntp.org for updating internal clock on APs.
TCP port 443	To access device.arubanetworks.com for getting a provisioning rule from Aruba Activate. Devices such as APs must be able to resolve device.arubanetworks.com using a valid DNSDomain Name System. A DNS server functions as a phone book for the intranet and Internet users. It converts human-readable computer host names into IP addresses and IP addresses into host names. It stores several records for a domain name such as an address 'A' record, name server (NS), and mail exchanger (MX) records. The Address 'A' record is the most important record that is stored in a DNS server, because it provides the required IP address for a network peripheral or element. server.
	To access activate.arubanetworks.com and configure provisioning rules in Aruba Activate.
	To access rcs-m.central.arubanetworks.com and establish a connection with the AP console through SSHSecure Shell. SSH is a network protocol that provides secure access to a remote device. .
	To access aruba.brightcloud.com (BrightCloud WebCC server) for website content classification.
	To access coreupdate.central.arubanetworks.com and allow Aruba Central to check firmware versions for automatic upgrades.
	To access images from the quay.io registry.
	To access and manage Aruba Central (on-premises).
	To access the outbound internet access.
	For HTTPS and websocket between Aruba Central (on-premises) and devices.
UDP 8211, 8285	To receive AMONAdvanced Monitoring. AMON is used in Aruba WLAN deployments for improved network management, monitoring and diagnostic capabilities. messages and view data for controllers in the Aruba Central monitoring dashboard.
TCP 22	For management access through SSH and cluster setup.
TCP 22	For CLI between Aruba Central (on-premises) and devices.
TCP 80	For browser redirect from HTTPHypertext Transfer Protocol. The HTTP is an application protocol to transfer data over the web. The HTTP protocol defines how messages are formatted and transmitted, and the actions that the w servers and browsers should take in response to various commands. to HTTPS.
	To upgrade firmware on the devices managed by Aruba Central.
	To access the outbound internet access.
TCP 2379, 2380, 4343, 4433, 6433, and 10250	For communication between Aruba Central nodes in a cluster.
Port 4343	To access the setup-wizard installation.
TCP 30633	To allow the devices to set up a connection with the OpenFlowOpenFlow is an open communications interface between control plane and the forwarding layers of a network. controller.
Port 25, 456, or 587	Dependent on the SMTPSimple Mail Transfer Protocol. SMTP is an Internet standard protocol for electronic mail transmission. configuration for alerts, reports, and Aruba Central (on-premises) account registration.
UDP 161, 162	For SNMPSimple Network Management Protocol. SNMP is a TCP/IP standard protocol for managing devices on IP networks. Devices that typically support SNMP include routers, switches, servers, workstations, printers, modem racks, and more. It is used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention. and traps.

The Aruba appliance opens multiple ports. Aruba recommends that you host the Aruba appliance behind a firewall.

/*]]>*/

Send Feedback