Gateway Network Setup
Last updated
Last updated
IT-Conductor Gateway is a reverse proxy and requires specific port configurations and network access.
Important
IT-Conductor Gateway does not require the incoming connections to be enabled aside for the following exceptions:
SSH (Port 22) access to the host from the tenant's internal network for gateway configuration and troubleshooting.
Remote Gateway Configuration (port 8080). Not recommended, instead, use SSH and the command line interface. (Optional)
API Server (Port 8889) for local IT-Conductor Alert API (Optional)
IT-Conductor RSyslog Server (Port 514 UDP or TCP) (Optional)
The gateway is using HTTPS port 443 to communicate with IT-Conductor cloud services hosted on the public network as DNS name: agents.itconductor.com
Ensure that firewall rules and routing are properly configured. You can test access from the gateway SSH session by executing the following command:
If all is working properly the following output should be produced:
In addition to connecting to IT-Conductor cloud services on the public network, the gateway needs to be able to access systems and applications on the private network. The routing to application-specific hosts may require configuration in the gateway host routing settings.
Depending on the application type, the firewall must have the appropriate hosts, protocols, and ports enabled for incoming connection to the respective application from the IT-Conductor gateway.
Name | Port Range | Rule |
---|---|---|
SAP Dispatcher | 3200-3299 | 32<NN> |
Gateway | 3300-3399 | 33<NN> |
Secured Gateway | 4800-4899 | 48<NN> |
Message Server | 3600-3699 | 36<NN> |
Name | Port Range | Rule |
---|---|---|
P4 (JMX) | 50004-59904 | 5<NN>04 |
P4S (JMX Secure) | 50006-59906 | 5<NN>06 |
HTTP | 50000-59900 | 5<NN>00 |
HTTPS | 50001-59901 | 5<NN>01 |
Name | Port Range | Rule |
---|---|---|
SQL (SystemDB) | 30013-39913 | 3<NN>13 |
SQL (Tenant DB Single) | 30015-39915 | 3<NN>15 |
SQL (Tenant DB Multi) | 30041-39998 | 3<NN>41[+3] |
Name | Port Range | Rule |
---|---|---|
HTTP | 50013-59913 | 5<NN>13 |
HTTPS | 50014-59914 | 5<NN>14 |
DB/OS HTTP | 1128 | - |
DB/OS HTTPS | 1129 | - |
For other systems and applications, see port configurations below:
Name | Port |
---|---|
Cloud-based Applications and Platforms |
|
SAP BusinessObjects |
|
SAP BusinessObjects DataServices |
|
SAP Cloud Connector |
|
SAP DB |
|
SAP ASE |
|
InterSystems IRIS |
|
Microsoft SQL Server |
|
Oracle (DBMS) |
|
Linux |
|
Windows |
|
CIFS (aka SMB, Windows File Server protocol) |
|
Veeam Backup Server |
|
Syslog Server |
|