TCP 18265 ‘FW1_ica_mgmt_tools’ - Check Point Internal CA Management Tools Managing the ICA and central administration of Internal Certificate Authority (ICA) on the Security Management Server & Needs to be started separately with the Security Management Server andcpca_client Checking SLA’s defined in Virtual Links by SmartView Monitor TCP 18241 ‘E2ECP’ - Check Point End to End Control Protocol Loopback port (used by RTM process). TCP 18221 ‘CP_redundant’ - Check Point Redundant Management Protocol Synchronization between Primary and Secondary Security Management Severs / Customer Management Add-ons (CMAs) / Domain Management Servers (by FWM daemon) TCP 18211 ‘FW1_ica_push’ - Check Point Internal CA Push Certificate Service Pushing certificates from the Internal Certificate Authority (ICA) on Security Management Sever (by CPD daemon) to Security Gateway TCP 18210 ‘FW1_ica_pull’ - Check Point Internal CA Pull Certificate Service Pulling certificates by Security Gateway from Security Management Sever (ICA_PULL, FWCA_PULL_PORT) (by CPCA daemon) TCP 18209 not predefined SIC communication (status, issue, revoke) between the Security Management Server (the Internal Certificate Authority (ICA)) and objects managed by this Security Management Sever (Security Gateways, OPSEC applications, etc.) (by FWM daemon)
TCP 18202 ‘CP_rtm’ - Check Point Real Time Monitoring Loopback port (used by RTM process). TCP 18190 ‘CPMI’ - Check Point Management Interface Used by the FireWall Management process (FWM) to listen for Management Clients attempting to connect to the management module: Protocol used for Communication between the SmartConsole and the Security Management Server & Protocol for connections from Multi-Domain GUI to MDS and CMA / Domain TCP 18187 ‘FW1_ela’ - Check Point OPSEC Event Logging API Sending FireWall logs by OPSEC products to Security Management Server (to FWD daemon) TCP 18186 ‘FW1_omi-sic’ - Check Point OPSEC Objects Management Interface with Secure Internal Communication (SIC) Secure Internal Communication (SIC) between OPSEC certified products and Security Gateway TCP 18185 ‘FW1_omi’ - Check Point OPSEC Objects Management Interface Protocol used by applications having access to the ruleset saved on Security Management Server TCP 18184 ‘FW1_lea’ - Check Point OPSEC Log Export API Exporting FireWall logs by OPSEC products from Security Management Server (by FWD daemon)
Used only on Provider-1 Customer Management Add-on (CMA) / Domain Management Server for Session Authentication - CAPS Messaging (MSG_DEFAULT_PORT) TCP 8989 not predefined Loopback port (used by CPD process). TCP 258 ‘FW1_mgmt’ - Check Point Security Management (Version 4.x) Communication between SmartConsole applications and Security Management Server (by FWM daemon)
0 kommentar(er)
