Setup Guide

ManualsBrandsDell ManualsAPEXAPEX Data Storage Services

Table Of Contents

VPN connections are established between your location and two Dell Technologies sites in an active/active configuration where

all connections are always active for high availability and disaster recovery. Dell Technologies Managed Services uses VPN for

the following services:

● Remote management—Used for secure management and support of your APEX Data Storage Services using Remote

Desktop sessions.

● Monitoring—Remote support teams monitor your APEX Data Storage Services for alerts and if found, take appropriate

action.

● Telemetry—Data is gathered for capacity usage, performance, and compliance with specified metrics and controls.

VPN connections are secured using the IPSEC industry standard protocol.

Port usage

Work with Dell Technologies Managed Services to configure your network and firewall so that managed services work properly

with your offer.

Table 3. Port usage

Port Service Protocol Access Direction Purpose

- ICMP - - DTMS troubleshooting

- IPSEC, IKE - - VPN communications

20 FTP TCP Outbound Port used for FTP data transfers. This port can be

opened by enabling FTP. Authentication is performed

on port 21 and defined by the FTP protocol.

21 FTP TCP Inbound Control port on which the FTP service listens for

incoming FTP requests.

22 SSH, SupportAssist, connect

home, SFTP, DTMS-Managed

server

TCP Bi-directional Allows SSH access (if enabled).

25 SMTP, DTMS-Managed server TCP Outbound Allows the appliance to send email. If closed, email

notifications are unavailable.

26 SSH, SupportAssist, connect

home, SFTP, DTMS-Managed

Server

TCP Bi-directional SSH access to port 22 is redirected to this port.

If closed, management connections using SSH are

unavailable.

53 DNS TCP/UDP Outbound Used to make DNS queries to DNS nameservers.

80 HTTP TCP Bi-directional vSphere Web Client, used for SupportAssist proxy

connection.

123 NTP TCP/UDP Outbound NTP time synchronization.

443 HTTPS, DTMS-Managed

Server

TCP Bi-directional Secure access to PowerStore Manager. If closed,

communication with the appliance is unavailable. Also

used for DTMS Management server access.

587 SMTP, DTMS Manager server TCP Outbound Allows the appliance to send email. if closed, email

notifications are unavailable.

3260 iSCSI TCP/UDP Bi-directional Required to provide the following access to iSCSI

services:

● External host iSCSI access

● External or PowerStore embedded ESXi host

iSCSI access

● Inter-cluster access for replication

● Storage import access from legacy EqualLogic

Peer Storage, Dell Compellent Storage Center,

Unity, and VNX2 systems.

If closed, iSCSI services are unavailable.

10 Site Planning