Connectivity requirements

Contents

Connectivity requirements

Find the connectivity requirements of every Nexthink product in the reference tables below. You can configure some of the products to use either a secure or a non secure channel for specific services (see the column Reason). Depending on their configuration, note that you may require to allow connections through a different port number. For each connection, the tables also indicate the transport protocol used. When an application protocol handles the connection over the transport layer, the name of the application protocol precedes the name of the transport protocol.

Engine

In the following table, we describe the different ports that must be open on the Engine appliance to communicate seamlessly with the other Nexthink components and with standard network services.

Port

Number

Protocol Direction

(IN/OUT)

Reason Domains
22 SSH / TCP IN Secure shell connection to the CLI  
25 SMTP / TCP OUT Mail server for notifications  
53 DNS / UDP OUT Resolving destination names by reverse IP  
80 HTTP / TCP OUT Connection to automatic updates updates-v5.nexthink.com
HTTP / TCP OUT Connection to the documentation web site doc.nexthink.com
98 HTTP / TCP OUT Communication with Updaters (non secure)  
99 HTTPS / TCP OUT Communication with Updaters (secure)  
HTTPS / TCP IN Administration through the Web Console  
123 NTP / UDP OUT Time synchronization

0.centos.pool.ntp.org 1.centos.pool.ntp.org 2.centos.pool.ntp.org

389 LDAP / TCP OUT Connection to Active Directory (non secure)  
443 HTTPS / TCP OUT Connection to the Application Library application-library-v5.nexthink.com
636 LDAPs / TCP OUT Connection to Active Directory (secure)  
999 UDP IN Traffic from Collector  
TCP IN Connection with the Finder and the Portal  
1671 TCP IN Access to the Web API  
5000 TCP OUT Communication channel for realtime services to the Portal  
8888 HTTP / TCP IN Connection from Updater (non secure)  
HTTPS / TCP IN Connection from Updater (secure)  

Portal

In the following table, we describe the different ports that must be open in the Portal appliance to communicate seamlessly with the other Nexthink components.

Port

Number

Protocol Direction

(IN/OUT)

Reason Domains
22 SSH / TCP IN Secure shell connection to the CLI  
25 SMTP / TCP OUT Mail server for notifications  
53 DNS / UDP OUT Lookup name of AD servers  
80 HTTP / TCP IN Access to the Portal (non secure)  
HTTP / TCP OUT Connection for automatic updates updates-v5.nexthink.com
HTTP / TCP OUT Connection to the documentation web site doc.nexthink.com
HTTP / TCP OUT Connection to the Library library.nexthink.com
99 HTTPS / TCP IN Administration through the Web Console  
HTTPS / TCP OUT Centralized administration of the Engine  
123 NTP / UDP OUT Time synchronization

0.centos.pool.ntp.org 1.centos.pool.ntp.org 2.centos.pool.ntp.org

389 LDAP / TCP OUT Connection to Active Directory (non secure)  
443 HTTPS / TCP IN Access to the Portal (secure)  
HTTPS / TCP OUT Connection to the Online License mechanism license.nexthink.com
636 LDAPs / TCP OUT Connection to Active Directory (secure)  
999 TCP OUT Connection to the Engine  
5000 TCP IN Communication channel for realtime services from the Engine  
8100 HTTP / TCP OUT Send license information to Local License Manager  

Local License Manager

The Local License Manager resides in the same machine as the Portal.

Port

Number

Protocol Direction

(IN/OUT)

Reason
8100 HTTP / TCP IN Get license information from the Portal


Finder

In the following table, we describe the different ports that must be opened on the computers running the Finder to communicate seamlessly with the other Nexthink components.

Port

Number

Protocol Direction

(IN/OUT)

Reason Domains
80 HTTP / TCP OUT Connection to the Library library.nexthink.com
HTTP / TCP OUT Connection for the notification of new updates doc.nexthink.com
HTTP / TCP OUT Verification of security certificates ocsp.verisign.com
HTTP / TCP OUT Optional: Feedback for the customer experience program report.nexthink.com
443 HTTPS / TCP OUT Connection to download new updates download.nexthink.com
HTTPS / TCP OUT Connection to the customer improvement program site finder-analytics.nexthink.com
HTTPS / TCP OUT Connection to the Application Library for manual update application-library-v5.nexthink.com
999 TCP OUT Connection to the Engine  

Collector

In the following table, we describe the different ports that must be opened on the computers running the Nexthink Collector to send data seamlessly with the Nexthink Engine.

Port

Number

Protocol Direction

(IN/OUT)

Reason
999 UDP OUT Connection to the Nexthink Engine

Updater

If you install the Updater in order to deploy and update the Collector, here is the list of different network ports that need to be open in the computers running the Collector to communicate seamlessly with the Engine.

Port

Number

Protocol Direction

(IN/OUT)

Reason
98 HTTP / TCP IN Connection from the Engine (non secure)
99 HTTPS / TCP IN Connection from the Engine (secure)
8888 HTTP / TCP OUT Connection to the Engine (non secure)
HTTPS / TCP OUT Connection to the Engine (secure)