Communication Ports Used By ControlUp: Hybrid Cloud (EU Customers)

Print
Dark

Light
PDF

Outbound Connections

Devices and servers used by ControlUp, providing configuration interface, data aggregration, upload and authorization validation for Solve access, and other services. This requires TCP 443 / SSL outbound connectivity to the following IPs / URLs:

DNS	IP	Purpose
fe1.controlup.com	52.31.169.19	Real-Time DX login services
fe3.controlup.com	52.31.158.49	Real-Time DX login services
rt-app.controlup.com	18.200.38.56 52.212.202.250	Real-Time DX configuration services
mp.controlup.com	54.145.10.60 50.19.173.115 3.229.60.149	Real-Time DX <> Solve query engine
s3.eu-central-1.amazonaws.com		Real-Time DX / Insights historical data uploads
cu-ca-eu.controlup.com		Real-Time DX Centralized Auditing services
uploader-eu-central-1.controlup.com	3.69.222.61 3.120.161.2 3.70.55.18	Real-Time DX / Insights historical data uploads
insights-hec.controlup.com		HTTP Event Collector (HEC) Endpoint - telemetry data from ControlUp Monitors

Web Browser Access

Administrators and other ControlUp users need to have web browser access (TCP port 443, https) to the following addresses:

Destination	Details
https://solve.controlup.com	ControlUp Solve Portal
https://insights.controlup.com	ControlUp Insights Portal
https://[tenant-name].sip.controlup.com https://maps.google.com	Edge DX Portal
https://app.eu.scoutbees.io	Scoutbees Portal

Connectivity to Devices and Services in Your Network

In most networks, the following will be required for proper functioning of the ControlUp Monitors and virtual machines being monitored:

Destination	Type	Port	Protocol	Details
ControlUp Agent	TCP	40705	WCF	Incoming TCP / WCF traffic from Console and Monitor cluster to ControlUp Agents
ControlUp Monitor	TCP	40706		Used for Console ⇔ Monitor and internal Monitor cluster communication
ControlUp Monitor	TCP	135 - 139, 445	RPC / WMI / SMB	Used for monitor deployment via the console
Domain Controllers	TCP	389	LDAP	LDAP communication from the Real-Time Console and ControlUp Monitors with Domain Controllers

The following is a comprehensive list of services that you want to monitor with ControlUp. This table includes information on the default ports and protocols. According to the case, there can be a source such as ControlUp Monitors, Real-Time Console, or Scoutbees Hives.

There is no requirement to configure all and it depends on what you want to monitor:

Destination	Type	Port	Protocol	Details
Citrix XenDesktop Controllers	TCP	80	HTTP	Communication with XenDesktop Infrastructure
Citrix XenServer Pool Master/Hosts	TCP	80	HTTP	Communication with XenServer Infrastructure (and RRD communications)
ControlUp Agent	TCP	135 - 139, 445, 49152-65535	RPC / WMI / SMB	Agent deployment and upgrades via the console Certain OOB actions, such as restarting the agent
Data Collector	TCP	40705	WCF	ControlUp Console - Data collector port
Domain Controllers	TCP	389	LDAP	LDAP communication with Domain Controllers
NetScalers	TCP	443 / 80	HTTP(S)	Depending on what the administrator configured
Nutanix/AHV	TCP	9440		Communication with Nutanix Infrastructure
VMware Horizon Connection Server	TCP	443	HTTPS	Communication with Horizon Infrastructure
VMware vCenter Server	TCP	443	HTTPS	Communication with vSphere Infrastructure
Linux Client	TCP	22	SSH	Communications with Linux machines

Connection Requirements for APIs

Depending on if you plan to use the respective API, enable the following API URIs:

Destination	Type	Port	Protocol	Details
*.cloud.com	TCP	443	HTTPS	Communication with Citrix Cloud
https://sts.amazonaws.com https://ec2.amazonaws.com	TCP	443	HTTPS	AWS API
https://management.azure.com	TCP	443	HTTPS	Azure API
edgedx-functions.azurewebsites.net	TCP	443	HTTPS	Creating tenant for Edge DX

Was this article helpful?

What's Next

User Permissions in ControlUp

Table of contents

Outbound Connections
Web Browser Access
Connectivity to Devices and Services in Your Network
Connection Requirements for APIs