List of firewall ports that must be open for communication between the deployment manager and the nodeagent
 Technote (troubleshooting)
 
Problem(Abstract)
In IBM® WebSphere® Application Server v5.0 Network Deployment configuration, it is necessary to open certain ports in any firewalls running between the deployment manager and nodeagent server processes. This technote contains a list of ports that must be opened in the firewall between the deployment manager and the nodeagent.
 
Cause
If the necessary firewall ports are not opened between the deployment manager and the nodeagent, some commands fail. Here is a partial list:
  • addNode
  • SyncNode
  • Discovery between node and cell
 
Resolving the problem
When you federate an Application Server node into a deployment manager cell, the deployment manager instantiates the node agent server process on the application server node. The following table is a list of the port assignments that the node agent server uses by default.

If you have modified the ports, or if you want to confirm the assigned port, check the port assignments in the Install_Root \config\cells\cellname\nodes\nodename\serverindex.xml. If there is more than one node, you must check the port assignments for each node.


Application Server Version 5.0 default port definitions for the node agent server process

BOOTSTRAP_ADDRESS 2809
ORB_LISTENER_ADDRESS 9900
SAS_SSL_SERVERAUTH_LISTENER_ADDRESS 9901
CSIV2_SSL_MUTUALAUTH_LISTENER_ADDRESS 9101
CSIV2_SSL_SERVERAUTH_LISTENER_ADDRESS 9201
NODE_DISCOVERY_ADDRESS 7272
NODE_MULTICAST_DISCOVERY_ADDRESS 5000
DRS_CLIENT_ADDRESS 7888
SOAP_CONNECTOR_ADDRESS 8878


If the ORB_LISTENER_ADDRESS is not defined in the serverindx.xml file, review the following technote:

WebSphere_Application_Server/swg21168565.html

During the addnode operation, the filetransfer application uses port 9090 by default. The filetransfer application uses the same HTTP transport port that is used by the administrative console. If security is enabled, the default secured port 9043 must be opened in the firewall.

If you modify the ports, or if you want to confirm the assigned port, check the port assignments in the
Install_Root\config\cells\cellname\nodes\nodename\servers\dmgr\server.xml file.

Default FileTransfer Application port 9090
Secured - Default FileTransfer Application port 9043

When you federate an application server node with the embedded messaging server feature into a deployment manager cell, the deployment manager instantiates a Java™ Message Service (JMS) server process, jmsserver, on the application server node. The JMS server uses these port assignments by default as shown in the table.

The JMSSERVER SECURITY PORT is located in the server.xml file.

Application Server Version 5.0 JMS server default port definitions

JMSSERVER_DIRECT_ADDRESS 5559
JMSSERVER_QUEUED_ADDRESS 5558
SOAP_CONNECTOR_ADDRESS 8876
JMSSERVER SECURITY PORT 5557
 
 
Cross Reference information
Segment Product Component Platform Version Edition
Application Servers Runtimes for Java Technology Java SDK
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > Object Request Broker (ORB)
Operating system(s): Windows
Software version: 5.1
Software edition:
Reference #: 1178437
IBM Group: Software Group
Modified date: Mar 15, 2005