Network Port Assignment

The following table lists the device's network port assignments. This table also shows whether these ports are enabled or disabled by default and how to configure them. For ports that you do not need in your deployment but that are enabled by default, it's highly recommended that you disable them for security reasons.

For increased security against attacks, it's highly recommended to change the default port numbers (especially for the SIP application).

Network Port Assignments

Interface Type

Application

Protocol

Port

Default

Port Configuration

OAMP

SSH server

TCP

22

Enabled
Enabling: 'Enable SSH Server' (Enable)
Port Number: SSH Interfaces table - 'Port'
Access Control: Firewall table (Layer 3/4) and Access List table

Telnet server

TCP

23

Disabled
Enabling: 'Enable Telnet Server' (Enable Secured or Enable Unsecured)
Port Number: Telnet Interfaces table - 'Port'
Access Control: Firewall table (Layer 3/4) and Access List table

Web server
(HTTP)

TCP

80

Enabled
Enabling: Web Interfaces table - 'HTTPS Only' (HTTP and HTTPS)
Port Number: Web Interfaces table - 'HTTP Port'
Access Control: Firewall table (Layer 3/4) and Access List table

Web server
(HTTPS)

TCP

443

Enabled
Enabling: Web Interfaces table - 'HTTPS Only' (HTTPS Only or HTTP and HTTPS)
Port Number: Web Interfaces table - 'HTTPS Port'
Access Control: Firewall table (Layer 3/4) and Access List table

SNMP server (GET / SET) and client (trap sender)

UDP

161

Enabled
(disabled for Mediant 90xx and Mediant Software)
Enabling: 'Disable SNMP' (No)
Port Number:
SNMP GET / SET: [SNMPPort]
SNMP traps: SNMP Trap Destinations table - 'Trap Port'
Access Control: Firewall table (Layer 3/4) and SNMP Trusted Managers table

Any

DHCP server

UDP

67

Disabled
Enabling: DHCP Servers table
Local interface: DHCP Servers table - 'Interface Name'
Port Number: Non-configurable
Access Control: Firewall table (Layer 3/4)

Control

 

SIP traffic

UDP / TCP

5060

Enabled

Enabling: SIP Interfaces table – 'UDP Port' or 'TCP Port'
Port Number: SIP Interfaces table – 'UDP Port' or 'TCP Port'
Access Control: Firewall table (Layer 3/4)

SIPS traffic

TCP

5061

Enabled
Enabling: SIP Interfaces table – 'TLS Port'
Port Number: SIP Interfaces table – 'TLS Port'
Access Control: Firewall table (Layer 3/4)

SIP over WebSocket (e.g., WebRTC)

TCP

443

Enabled
Enabling: SIP Interfaces table – 'TLS Port'
Port Number: SIP Interfaces table – 'TLS Port' (and 'Encapsulating Protocol' set to WebSocket)
Access Control: Firewall table (Layer 3/4)

Media

Media traffic (RTP, RTCP, T.38)

UDP

6000-65535

Enabled
Enabling: Enabled during SIP session establishment
Port Number: Media Realms table – 'UDP Port Range Start' and 'Number Of Media Session Legs'
Access Control: n/a

Maintenance (HA)

HA status

UDP

669

Disabled
Enabling: 'HA Remote Address'
Port Number: n/a

Note: Applicable to the following:

Standalone SBC
Signaling Component in Mediant CE
Signaling Component in Media Transcoding Cluster

HA keep-alive

UDP

680

Disabled
Enabling: 'HA Remote Address'
Port Number: n/a

Note: Applicable to the following:

Standalone SBC
Signaling Component in in Mediant CE
Signaling Component in Media Transcoding Cluster

HA file sync

TCP

80

Disabled
Enabling: 'HA Remote Address'
Port Number: n/a

Note: Applicable to the following:

Standalone SBC
Signaling Component in in Mediant CE
Signaling Component in Media Transcoding Cluster

HA data sync

TCP

2442

Disabled
Enabling: 'HA Remote Address'
Port Number: n/a

Note: Applicable to the following:

Standalone SBC
Signaling Component in in Mediant CE
Signaling Component in Media Transcoding Cluster

Cluster

Cluster control

TCP

2424

Disabled
Enabling: 'Cluster Mode'
Port Number: n/a

Cluster keep-alive

UDP

3900

Disabled

Enabling: 'Cluster Mode'
Port Number: n/a

Note: Applicable to the following:

Signaling Component in in Mediant CE
Media Component in in Mediant CE
Signaling Component in Media Transcoding Cluster
Media Component in Media Transcoding Cluster