Security
Table Of Contents
- View Security
- Contents
- View Security
- View Accounts, Resources, and Log Files
- View Security Settings
- Ports and Services
- Configuring Security Protocols and Cipher Suites on a View Connection Server Instance or on a Security Server
- Default Global Policies for Security Protocols and Cipher Suites
- Configuring Global Acceptance and Proposal Policies
- Configure Acceptance Policies on Individual View Servers
- Configure Proposal Policies on View Desktops
- Internet Engineering Task Force Standards
- Older Protocols and Ciphers Disabled in View
- Reducing MIME Type Security Risks
- Mitigating Cross-Site Scripting Attacks
- Content Type Checking
- Origin Checking
- Configuring Security Protocols and Cipher Suites for Blast Secure Gateway
- Deploying USB Devices in a Secure View Environment
- Index
Ports and Services 3
Certain UDP and TCP ports must be open so that View components can communicate with each other.
Knowing which Windows services run on each type of View server helps identify services that do not
belong on the server.
This chapter includes the following topics:
n
“View TCP and UDP Ports,” on page 17
n
“Services on a View Connection Server Host,” on page 21
n
“Services on a Security Server,” on page 22
View TCP and UDP Ports
View uses TCP and UDP ports for network access between its components.
During installation, View can optionally configure Windows firewall rules to open the ports that are used by
default. If you change the default ports after installation, you must manually reconfigure Windows firewall
rules to allow access on the updated ports. See "Replacing Default Ports for View Services" in the View
Installation document.
Table 3‑1. TCP and UDP Ports Used by View
Source Port Target Port
Protoc
ol Description
Security server 55000 View Agent 4172 UDP PCoIP (not SALSA20) if PCoIP Secure Gateway is
used.
Security server 4172 Horizon Client Varies UDP PCoIP (not SALSA20) if PCoIP Secure Gateway is
used.
NOTE Because the target port varies, see “Notes
and Caveats for TCP and UDP Ports Used by
View,” on page 21.
Security server 500 View
Connection
Server
500 UDP IPsec negotiation traffic.
Security server * View
Connection
Server
4001 TCP JMS traffic.
Security server * View
Connection
Server
4002 TCP JMS SSL traffic.
Security server * View
Connection
Server
8009 TCP AJP13-forwarded Web traffic, if not using IPsec.
VMware, Inc. 17