PORT
Содержание
- 1 Как узнать открыт порт или нет?
- 2 Application Server & System Platform
- 3 Historian
- 4 Historian Client
- 5 Wonderware Information Server (WIS)
- 6 Manufacturing Execution System (MES)
- 7 InTouch Access Anywhere
- 8 License Server
- 9 DA Server и DI Objects
- 10 Microsoft Remote Desktop Protocol
- 11 Другое - желательно
- 12 Описание некоторых портов
- 13 Источники
- 14 Другие темы
Как узнать открыт порт или нет?
Просканировать, например при помощи Free Port Scanner (бесплатная - Freeware), см. сайт разработчика: http://www.nsauditor.com/network_tools/free_port_scanner.html
Application Server & System Platform
DCOM 135/tcp File and printer sharing 445/tcp SQL TCP 1433/tcp SQL Server Browser 1434/udp Ports 1024 to 65535 TCP
MxPort (NMXSVC) 5026 TCP 5026 Outbound. Outbound Archestra Communication Channel. Peer-to-Peer, bi-directional between all ArchestrA-enabled nodes. PMCPort 30000 SMCPort 30001
Application Server & System Platform Multi-Galaxy
Данный раздел посвящен ТОЛЬКО Multi-Galaxy системам, представленные ниже порты для одиночных систем не обязательны
ASBGRBrowsing Service 7500 (default, configurable) ASBMxDataProvider Service 3572 (default, configurable) ASBAuthentication Service 7779 (default, configurable)
Local Discovery Server 9111 Primary Local Galaxy 9110 Secondary Local Galaxy Server 9210 Primary Cross Galaxy Server 9310 Secondary Cross Galaxy Server 9410 Galaxy Pairing 7085 Configuration Service 6332 Content Provider Service 6011 Deploy Agent Service 6533, 6633 Service Manager Service 6111, 6113 System Authentication Service 9876
Истоник: Tech Note 969 Port Configuration List for System Platform 2012 R2 Multi-Galaxy Environment https://wdnresource.wonderware.com/support/kbcd/html/1/t002792.htm
Historian
File and printer sharing 445/tcp SQL Server Browser 1434/udp SQL TCP 1433/tcp/udp Remote IDAS uses 135...139(TCP/UDP) and Port 445 (TCP and UDP)/udp Для репликации данных на tier-2 32568 (TCP) - по умолчанию
Источник: Tech Note 851 Port Considerations for Wonderware Historian https://wdnresource.wonderware.com/support/kbcd/html/1/t002646.htm
IDAS
135...139 TCP/UDP 445 TCP/UDP
Remote IDAS
135...139 (TCP/UDP) 445 (TCP/UDP)
MDAS
135 TCP/UDP
HCAL / HCAP
32568
Ports for Replication
This can be an integer between 1 and 65535. The default is 32568
Historian Client
Для получения данных с сервера Historian Historian Client использует порт 1433, или необходимо настроить связь с сервером Historian по HTTP
Для того чтобы SQL Server обрабатывал запросы по HTTP необходимо поднять SQLXML.
- см. Information Server
- Tech Note 498 Installing SQLXML on Wonderware Information Server 3.0
SQL TCP 1433/tcp
Wonderware Information Server (WIS)
см. также Information Server
80 - по умолчанию, порт настраиваемый, нужен для доступа клиентов через Internet Explorer
Для открытия Historian Client из Internet Explorer должен быть открыт порт к SQL (1433) или необходимо настроить связь с сервером Historian по HTTP.
Для того чтобы SQL Server обрабатывал запросы по HTTP необходимо поднять SQLXML.
- см. Information Server
- Tech Note 498 Installing SQLXML on Wonderware Information Server 3.0
SQL TCP 1433/tcp
Manufacturing Execution System (MES)
The following table lists the port name and corresponding port numbers that are included in the Windows Firewall exceptions list for the Wonderware MES 2014.
5413 1433 SQL TCP 1434 SQL Server Browser 80 HTTP 8099 TCP
The list of application names that are included in the Windows Firewall exceptions list for the Wonderware MES 2014 is as follows:
DANSrv.exe OpcEnum.exe Microsoft SQL Server Microsoft Distributed Transaction Coordinator (MSDTC) dllhost.exe
- Источник: readme.html в корне дитрибутива
InTouch Access Anywhere
8080 - по умолчанию, порт настраиваемый, нужен для доступа клиентов через браузер
License Server
The license server uses a default TCP/IP port range 27000-27009
DA Server и DI Objects
DAS SI Direct 102 DAS MBTCP 502 DAS ABTCP 2221 DAS ABTCP 2222 DAS ABTCP 2223 S/L DA Servers 5413 DAS ABCIP 44818
Microsoft Remote Desktop Protocol
TCP 3389 - По умолчанию
Другое - желательно
ICMP
Описание некоторых портов
Источник: Securing Application Server Systems https://wdn.wonderware.com/sites/WDN/Lists/Solution%20Central%20Deployment/Article.aspx?List=2ecbf52e-87aa-4be2-9443-f6f5430c66cd&ID=253
ICMP
PING ICMP Protocol Type 8
- Between all ArchestrA - enabled nodes.
53 TCP/UDP
DNS UDP 53, TCP 53
- Domain Name Service. From client to DNS Server.
88 TCP
KERBEROS TCP 88 Authentication
123 UDP
NTP UDP 123
- Time Synchronization. From Client to Domain controller(s) or time master.
135 TCP
RPC DCE TCP 135 Outbound
- Outbound DCOM. Peer-to-Peer, bidirectional between all ArchestrA-enabled nodes.
137 UDP
NETBIOS NameService UDP 137 Send/Receive
Name Service/Browsing.
- From WAS to WINS Server or Browse Master or Domain Master Browser.
138 UDP
NETBIOS Datagram UDP 138 Send
Name Service/Browsing.
- From WAS to Browse Master or from Browse Master to Domain Master Browser.
139 TCP
NETBIOS Session TCP 139 Outbound
- Server Message Block (SMB). Used to implement Windows networking from WAS to the Domain Controller if applicable.
389 TCP
LDAP TCP 389
- Active Directory Domain, from client to Domain Controller(s).
445 TCP
CIFS TCP 445
Outbound
- File serving, deploying. From IDE to WAS.
1024-65000 TCP
SUITELINK TCP 5413
TCP 1024-65000 (see note below)
- SuiteLink: InTouch, IO Server communication. SuiteLink establishes a secondary connection in the disclosed port range. Stateful packet inspection firewalls handle this operation automatically.
1433 TCP
SQL Server TCP 1433 Inbound
- Inbound SQL Server. From SQL Server to Client.
SQL Client TCP 1433 Outbound
- SQL Client. From Client to SQL Server.
1434 UDP
SQL Browser UDP 1434 Send/Recieve
- Send Receive Only if implementing SQL Server instances.
3389 TCP
Microsoft Remote Desktop Protocol По умолчанию используется порт 3389 TCP
5026 TCP
NMXSVC TCP 5026 Outbound
- Outbound Archestra Communication Channel. Peer-to-Peer, bi-directional between all ArchestrA-enabled nodes.
5413 TCP
SUITELINK TCP 5413
TCP 1024-65000 (see note below)
- SuiteLink: InTouch, IO Server communication. SuiteLink establishes a secondary connection in the disclosed port range. Stateful packet inspection firewalls handle this operation automatically.
6000-6050 TCP
RPC Dynamic Port Range TCP 6000-6050* Outbound
- Custom range. Peer-to-Peer, bi-directional between all ArchestrA-enabled nodes.
Источники
- Источник: Checklist for System Platform implementations
- Источник: http://pogorelov-ss.blogspot.ru/2013_08_01_archive.html
- Источник: http://blog.archestra.info/%D0%BF%D0%B5%D1%80%D0%B5%D0%B2%D0%BE%D0%B4-tn-508-%D1%80%D0%B5%D1%88%D0%B5%D0%BD%D0%B8%D0%B5-%D0%BF%D1%80%D0%BE%D0%B1%D0%BB%D0%B5%D0%BC-%D1%81-%D0%BF%D1%80%D0%BE%D1%86%D0%B5%D1%81%D1%81%D0%B0%D0%BC/
- Источник: Securing Application Server Systems https://wdn.wonderware.com/sites/WDN/Lists/Solution%20Central%20Deployment/Article.aspx?List=2ecbf52e-87aa-4be2-9443-f6f5430c66cd&ID=253
Tech notes
- Tech Note 851 Port Considerations for Wonderware Historian https://wdnresource.wonderware.com/support/kbcd/html/1/t002646.htm
- Tech Note 861 Wonderware System Platform FAQs for IT Professionals https://wdnresource.wonderware.com/support/kbcd/html/1/t002659.htm
- Tech Note 876 Troubleshooting Wonderware Application Server Bootstrap Communications. https://wdnresource.wonderware.com/support/kbcd/html/1/t002677.htm
- Tech Note 969 Port Configuration List for System Platform 2012 R2 Multi-Galaxy Environment https://wdnresource.wonderware.com/support/kbcd/html/1/t002792.htm
