Network Connectivity Requirements¶
This topic covers the general network and connectivity requirements, including connection requirements, port allocation, and firewall and Intrusion Detection System (IDS) considerations.
General Outbound Connections from the Delphix Masking Engine¶
Protocol | Port Numbers | Use |
---|---|---|
TCP | 25 | Connection to a local SMTP server for sending email. |
TCP/UDP | 53 | Connections to local DNS servers. |
UDP | 123 | Connection to an NTP server. |
UDP | 162 | Sending SNMP TRAP messages to an SNMP Manager. |
TCP | 443 | HTTPS connections from the Delphix Engine to the Delphix Support upload server. |
TCP/UDP | 636 | Secure connections to an LDAP server. |
TCP/UDP | various | Connections to target environments such as databases (JDBC) and files (FTP, SFTP, NFS, or CIFS). |
General Inbound Connections to the Delphix Masking Engine¶
Protocol | Port Numbers | Use |
---|---|---|
TCP | 22 | SSH connections to the Delphix Engine. |
TCP | 80 | HTTP connections to the Delphix GUI (optional). |
UDP | 161 | Messages from an SNMP Manager to the Delphix Engine. |
TCP | 443 | HTTPS connections to the Delphix GUI. |
Firewalls and Intrusion Detection Systems (IDS)¶
Firewalls can add milliseconds to the latency between servers. Accordingly, for best performance, there should be no firewalls between the Delphix Masking Engine and the target environments. If the Delphix Masking Engine is separated from a target environment by a firewall, the firewall must be configured to permit network connections between the Delphix Masking Engine and the target environments for the application protocols (ports) listed above.
Intrusion detection systems (IDSs) should also be made permissive to the Delphix Masking Engine deployment. IDSs should be made aware of the anticipated high volumes of data transfer between the Delphix Masking Engine and target environments.