To change the ephemeral port range for PBX exchange client

Article:TECH147958  |  Created: 2011-01-11  |  Updated: 2012-07-28  |  Article URL http://www.symantec.com/docs/TECH147958
Article Type
Technical Solution


Environment

Issue



The internal business application of this Customer has been used a port range at belower 50,000. And Those ports have conflict with our randomly used port of vxpal and vxsvc. Customer asked Symantec to change our randomly used port of that.


Error



For instance, You can refer the output of TCP port of the lsof command.

The list of the vxpal:

[/opt/VRTSobc/pal33/bin]# lsof -i TCP |grep vxpal

vxpal 802980 root 14u IPv4 0xf1000600025d0398 0t390 TCP loopback:51239->loopback:50798 (ESTABLISHED)


Environment



SFCFS 5.0 MP3 for AIX 5.3


Cause



These are ephemeral ports assigned by the OS. Thus, We can adjust those port range at either the system level or PBX exchange client level.


Solution



To change the ephemeral port range for PBX exchange client (vxpal/vxsvc are pbx_exchange clients), you can set a registry key specifying the client port range in 5.0MP3 and above.

For vxsvc, add the registry key in the file /etc/vx/isis/Registry \HKEY_LOCAL_MACHINE\Software\Veritas\VxSvc\CurrentVersion\Network\Params\Security with the following:

- type = REG_SZ

- name = “CLIENT_PORT_RANGE”

- value in the form X-Y, where X and Y are numeric values and Y > X. For instance, 50000-65535.

For example,

[REG_SZ] "CLIENT_PORT_RANGE" = 50001-65536;

The following services should be stopped and started.

 Pbx_exchange
Vxsvc
 




Article URL http://www.symantec.com/docs/TECH147958


Terms of use for this information are found in Legal Notices