Ad Widget

**steveboyson** · 10-04-2014, 02:19

1) 10050/tcp/incoming to your agents, 10051/tcp/incoming to your servers or proxies. Is pretty well covered in the docs.
2) no
3) no

**Tharbad** · 10-04-2014, 13:15

What about outbound traffic?

I've opened those ports but I get the following error:

Code:

Get value from agent failed: cannot connect to [[<IP>]:10050]: [4] Interrupted system call

**steveboyson** · 10-04-2014, 15:30

Of course you need a way back from your agent. This is usually a high port (> 1024) and works as usual TCP connects via firewalls work.

**Tharbad** · 10-04-2014, 20:33

This port has a number? Or it's random?

Thanks

**steveboyson** · 10-04-2014, 21:11

It's as random as other outgoing tcp connections use random source ports.

**Tharbad** · 10-04-2014, 23:23

Great...
Is there a way to make it static?

**steveboyson** · 10-04-2014, 23:33

Originally posted by Tharbad

Great...
Is there a way to make it static?

Not that I know of. May I ask why is that causing troubles for you? It is just the way TCP works ...

**Tharbad** · 11-04-2014, 12:03

I like my security tight. Most of the monitoring system allow static ongoing ports. It's one of those "nice to have" features with all the security buzz in the recent years.

**steveboyson** · 11-04-2014, 12:36

I personally see no problem at all in this. SMTP, ssh, http, ... - they are all working that way using dynamic outgoing ports.

The rules on the firewalls almost always work with "SYN" and "TCP_ESTABLISHED" flags so that poses no probs in my opinion.

Ad Widget

Zabbix ports, auto deployment and remote control

Zabbix ports, auto deployment and remote control

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment