Cisco Cisco Content Security Management Appliance M690 User Guide
C-2
AsyncOS 9.6 for Cisco Content Security Management Appliances User Guide
Appendix C Firewall Information
161
UDP
In
AsyncOS IPs
SNMP queries.
162
UDP
Out
Management station
SNMP traps.
389 or
3268
LDAP
Out
LDAP servers
LDAP if LDAP directory servers are outside firewall. LDAP
authentication for spam quarantine.
authentication for spam quarantine.
636
3269
3269
LDAPS
Out
LDAPS
LDAPS — ActiveDirectory’s global catalog server.
443
TCP
In
AsyncOS IPs
Secure HTTP (
https
) access to the GUI for system monitoring.
443
TCP
Out
update-static.cisco.com
Verify the latest files for the update server.
443
TCP
Out
update-manifests.ironport.c
om
om
Obtain the list of the latest files from the update server (for
physical hardware appliances.)
physical hardware appliances.)
443
TCP
Out
update-manifests.sco.cisco.
com
com
Obtain the list of the latest files from the update server (for
virtual appliances.)
virtual appliances.)
443
TCP
Out
phonehome.senderbase.org
Receive/send Outbreak Filters.
443
TCP
Out
File Analysis server URL as
configured on your Web
Security appliance on the
Security Services >
Anti-Malware and
Reputation page, in the
Advanced section >
Advanced Settings for File
Analysis.
configured on your Web
Security appliance on the
Security Services >
Anti-Malware and
Reputation page, in the
Advanced section >
Advanced Settings for File
Analysis.
File Analysis server URL as
configured on your Email
Security appliance on the
Security Services > File
Reputation and Analysis
page, in the Advanced
Settings for File Analysis
section.
configured on your Email
Security appliance on the
Security Services > File
Reputation and Analysis
page, in the Advanced
Settings for File Analysis
section.
Display detailed file analysis results on the File Analysis server.
See also:
•
Email security reporting:
•
Web security reporting:
514
UDP/T
CP
CP
Out
Syslog server
Syslog logging.
1024
and
higher
and
higher
—
—
—
See information above for Port 21 (FTP.)
6025
TCP
In
AsyncOS IPs
Receive spam quarantine data from the Email Security appliance
if the external spam quarantine is enabled.
if the external spam quarantine is enabled.
7025
TCP
In and
out
out
AsyncOS IPs
Pass policy, virus, and outbreak quarantine data between Email
Security appliances and the Security Management appliance
when this feature is centralized.
Security appliances and the Security Management appliance
when this feature is centralized.
Table C-1
Firewall Ports
Default
Port Protocol
Port Protocol
In/Out Hostname
Purpose