Video Screencast Help
As we strive to continually improve your experience on our site, please help us by taking this survey and tell us about your satisfaction level using Symantec Connect. One lucky winner will receive 500 Connect points! * Take the survey.

Summary of Ports Used in DLP

Created: 28 Jan 2012 • Updated: 01 Feb 2012 | 4 comments
Language Translations
yang_zhang's picture
+11 11 Votes
Login to vote

Summary of Ports Used in DLP:

1. Enforce Server (https) -- port: 443 (Windows) -- port: 8443 (Linux)
2. Upgrade Wizard (Enforce) -- port: 8300
3. Communications from Enforce to Oracle Database -- port: 1521
4. Communications from Enforce to Detection Servers -- port: 8100
5. Communications from Endpoint Agents to Enforce Server -- port: 8000
6. Ports used by Network Prevent (Web) -- 80, 8080, as per Proxy specification
7. Ports used by Network Prevent (Email)
    -- MTAResubmitPort: 10026 (default)
    -- ServerSocketPort: 10025 (default)
8. Ports used by Network Discover crawlers and scanners

Source Destination Port Comment
Network Discover Target Server 445 This is for CIFS shares
Network Discover Target Server 2049 This is for NFS shares
Scanner agent Network Discover 8090 This is for the scanner agent targets (Sharepoint, Exchange, etc)
Network Discover Oracle Database 1521 This is for Oracle database
Network Discover DB2 50000 This is for IBM DB2
Network Discover MS SQL Server 1433 This is for MS SQL Server
Network Discover Sybase 7100 This is for Sybase
Network Discover MySQL 3306 This is for MySQL
Network Discover Lotus Notes 63148 This is when scanning Lotus Notes using DIIOP
Network Discover Lotus Notes 1352 This is when scanning Lotus Notes with native API
Web Services Agent Network Discover 8090 This is for the web services agent

Notes: The ports used above are default ports. The system administrator at the customer site should be consulted to check if any of the ports used has been modified in their environment.

Comments 4 CommentsJump to latest comment

AR Sharma's picture

Quite Small and to the Point!

Good information!

Thanks & Regards,

AR Sharma, CISSP

IBM Certified System Admin- Lotus Domino V7

ITIL V2 Certified

Login to vote
new_dlp's picture

These information is very useful to us to modify the firewall rules.

Login to vote
kishorilalWipro's picture

Thanks for sharing this valuable.

Login to vote
Wes_J's picture

5. Communications from Endpoint Agents to Enforce Server -- port: 8000

Correction here. Communication from Endpoint Agents to Endpoint Server Occurs over port: 8000 or Port:10443 depending on DLP version.  12.5 and later uses port 10443. 14.0 and later should only be using port 10443 for endpoint communication.

Login to vote