A.05.80 HP Insight Remote Support Advanced and Remote Device Access Security Overview (October 2012)
Protocol Ports Source Destination Function Configurable Optional
ocsp.verisign.com certificate revocation check
TCP 22 Customer's
SSH Client
Virtual CAS SSH command-line access for Virtual CAS
management
No Optional
TCP 25 Virtual CAS Customer-Designated
SMTP Server
Email notifications No Optional
TCP 443 or
web
proxy
port
Virtual CAS h20529.www2.hp.com
or Web Proxy
HTTPS connection to the HP RDA CAS Kit
server to download updates
No Optional
TCP 514 Virtual CAS Logging Server Syslog remote logging (unencrypted) Yes Optional
UDP 514 Virtual CAS Logging Server Syslog remote logging (unencrypted) Yes Optional
TCP other Virtual CAS Target System Customer-specified TCP port and application
protocol SSH-forwarded from HP via the relay
application
Yes Optional
UDP other Virtual CAS Target System Customer-specified UDP port and application
protocol SSH-forwarded from HP via the relay
application
Yes Optional
Additional Ports for iCAS
Table G.3. Additional Ports for iCAS Connectivity - Firewall/Port Requirements
Protocol Ports Source Destination Function Configurable Optional
UDP 53 iCAS Host DNS Server Domain Name Service (DNS) - Host name resolution No Required
TCP 80 or
web
proxy
iCAS Host HP Regional
RAMS Server
or Web Proxy
HTTP Tunnelling for SSH No Required
HP Insight Remote Support Advanced and Remote Device Access (A.05.80)Page 90 of 97
Security Overview
Appendix G: Summary of Network Ports for Remote Device Access