iDRAC10 Security Configuration Guide

PDF

iDRAC Port Configuration

The following table lists the ports that are required to remotely access iDRAC through firewall. These are the default ports iDRAC listens to for connections. Optionally, you can modify most of the ports. To modify ports, see Configuring services.

Table 1. Ports iDRAC listens for connectionsThe following table describes the types of ports of iDRAC:
Port number Type Function Configurable Port Maximum Encryption Level
22 TCP SSH Yes 256-bit SSL
80 TCP HTTP Yes None
161 UDP SNMP Agent Yes None
443 TCP HTTPS Yes 256-bit SSL
623 UDP RMCP/RMCP+ No 128-bit SSL
5000 TCP iDRAC to iSM No 256-bit SSL
5901 TCP VNC Yes 128-bit SSL
NOTE:Port 5901 opens when the VNC feature is enabled.

The following table lists the ports that iDRAC uses as a client:

Table 2. Ports iDRAC uses as clientThe following table describes the types of ports of iDRAC as client:
Port Number Type Function Configurable Port Maximum Encryption Level
25 TCP SMTP Yes None
53 UDP DNS No None
68 UDP DHCP-assigned IP address No None
69 TFTP TFTP No None
123 UDP Network Time Protocol (NTP) No None
162 UDP SNMP trap Yes None
445 TCP Common Internet File System (CIFS) No None
636 TCP LDAP Over SSL (LDAPS) No 256-bit SSL
2049 TCP Network File System (NFS) No None
3269 TCP LDAPS for global catalog (GC) No 256-bit SSL
5353 UDP mDNS No None
5696 TCP Key Management Server (SEKM) Yes 256-bit SSL
NOTE:When node-initiated discovery is enabled, iDRAC uses mDNS to communicate through port 5353. However, when both are disabled, port 5353 is blocked by iDRAC's internal firewall and appears as open|filtered port in the port scans.
514 UDP Remote syslog Yes None
6514 TCP Remote syslog Yes 256-bit SSL
Ports Internally used by iDRAC (These cannot be changed by the end user and cannot be used for other purposes).
  • 4200
  • 4201
  • 4202
  • 4203
  • 4204
  • 4205
TCP Redfish Internal Ports No None
  • 4300
  • 4301
  • 4400
TCP Authorizer Internal Ports No None
  • 5200
  • 5201
TCP UI and RACADM Internal Ports No None
  • 5555
  • 5556
TCP Internal Ports for IPC No None
199 UDP SNMP daemon No None
  • 5905
  • 5951
TCP VNC Vmedia/Vconsole No None

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\