-
Print
-
DarkLight
-
PDF
Communication Ports Used By ControlUp: Hybrid Cloud
-
Print
-
DarkLight
-
PDF
Required Communication Ports
Here are all the communication ports you need for ControlUp to work properly. Our integrations require you to whitelist certain ports and URLs when using them, as well as mandatory outbound URLs.
To verify connectivity from ControlUp products and components, you can use our network tester tool which checks connectivity to all required outbound URLs.
From the Console Machine
Source | Destination | Type | Port | Protocol | Details |
---|---|---|---|---|---|
Mandatory outbound URLs | |||||
Console | fe1.controlup.com | TCP | 443 | HTTPS | ControlUp configuration |
Console | fe2.controlup.com | TCP | 443 | HTTPS | ControlUp configuration |
Console | fe3.controlup.com | TCP | 443 | HTTPS | ControlUp configuration |
Console | fe4.controlup.com | TCP | 443 | HTTPS | ControlUp configuration |
Console | rt-app.controlup.com | TCP | 443 | HTTPS | ControlUp configuration |
Console | uploader-eu-central-1.controlup.com | TCP | 443 | HTTPS | GDPR front end servers |
Console | cu-ca-eu.controlup.com | TCP | 443 | HTTPS | Central Auditing |
Console | cu-ca-us.controlup.com | TCP | 443 | HTTPS | Central Auditing |
Mandatory ports | |||||
Console | ControlUp Agent | TCP | 135 - 139, 445, 49152-65535 | RPC / WMI / SMB | Agent deployment and upgrades via the console certain built-in actions, such as restarting the agent |
Console | ControlUp Agent | TCP | 40705 | WCF | Console to agent communication |
Console | ControlUp Monitor | TCP | 40706 | WCF | Console to monitor communication |
Console | ControlUp Monitor | TCP | 135 - 139, 445, 49152-65535 | RPC / WMI / SMB | Monitor deployment from the console |
Console | Data Collector | TCP | 40705 | WCF | Console to data collector communication |
Console | Domain Controller | TCP | 389 | LDAP | LDAP communication with Domain Controllers |
Optional ports, depending on what you want to monitor | |||||
Console | https://*.cloud.com https://*.citrixworkspacesapi.net https://*.xendesktop.net |
TCP | 443 | HTTPS | Communication with Citrix Cloud |
Console | Citrix XenDesktop Controllers | TCP | 80/443 | HTTP/S | Communication with XenDesktop infrastructure |
Console | Citrix XenServer Pool Master/Hosts | TCP | 80/443 | HTTP/S | Communication with XenServer Infrastructure (and RRD communications) |
Console | Linux Client | TCP | 22 | SSH | Communications with Linux machines |
Console | NetScalers | TCP | 80/443 | HTTP/S | Depending on what the administrator configured |
Console | Nutanix/AHV | TCP | 9440 | Communication with Nutanix Infrastructure | |
Console | VMware Horizon Connection Server | TCP | 443 | HTTPS | Communication with Horizon infrastructure |
Console | VMware vCenter Server | TCP | 443 | HTTPS | Communication with vSphere infrastructure |
From the Monitor Machine
Source | Destination | Type | Port | Protocol | Details |
---|---|---|---|---|---|
Mandatory outbound URLs | |||||
Monitor | rt-app.controlup.com | TCP | 443 | HTTPS | ControlUp configuration |
Monitor | uploader-eu-central-1.controlup.com | TCP | 443 | HTTPS | GDPR front end servers |
Monitor | cu-ca-eu.controlup.com | TCP | 443 | HTTPS | Central Auditing |
Monitor | cu-ca-us.controlup.com | TCP | 443 | HTTPS | Central Auditing |
Monitor | insights-hec.controlup.com | TCP | 443 | HTTPS | Insights historical data upload |
Monitor | mp.controlup.com | TCP | 443 | HTTPS | Solve |
Monitor | solve.controlup.com | TCP | 443 | HTTPS | Required to use Solve actions |
Monitor | s3.amazonaws.com | TCP | 443 | HTTPS | Upload historical data for Insights and Solve |
Monitor | *.s3.eu-central-1.amazonaws.com | TCP | 443 | HTTPS | Upload historical data for Insights and Solve |
Mandatory ports | |||||
Monitor | ControlUp Agent | TCP | 135 - 139, 445, 49152-65535 | RPC / WMI / SMB | Agent deployment via the monitor |
Monitor | ControlUp Agent | TCP | 40705 | WCF | Monitor to agent communication |
Monitor | ControlUp Monitor | TCP | 40706 | WCF | Inter-Monitor communication |
Monitor | ControlUp Monitor | TCP | 135 - 139, 445, 49152-65535 | RPC / WMI / SMB | Monitor deployment from the console |
Monitor | Data Collector | TCP | 40705 | WCF | Monitor to data collector communication |
Monitor | Domain Controller | TCP | 389 | LDAP | LDAP communication with Domain Controllers |
Optional ports, depending on what you want to monitor | |||||
Monitor | https://*.cloud.com https://*.citrixworkspacesapi.net https://*.xendesktop.net |
TCP | 443 | HTTPS | Communication with Citrix Cloud |
Monitor | Citrix XenDesktop Controllers | TCP | 80/443 | HTTP/S | Communication with XenDesktop infrastructure |
Monitor | Citrix XenServer Pool Master/Hosts | TCP | 80/443 | HTTP/S | Communication with XenServer Infrastructure (and RRD communications) |
Monitor | Linux Client | TCP | 22 | SSH | Communications with Linux machines |
Monitor | NetScalers | TCP | 80/443 | HTTP/S | Depending on what the administrator configured |
Monitor | Nutanix/AHV | TCP | 9440 | Communication with Nutanix Infrastructure | |
Monitor | SMTP Server | TCP | 25 | SMTP | Email alerts |
Monitor | VMware Horizon Connection Server | TCP | 443 | HTTPS | Communication with Horizon infrastructure |
Monitor | VMware vCenter Server | TCP | 443 | HTTPS | Communication with vSphere infrastructure |
From the Data Collector Machine
Source | Destination | Type | Port | Protocol | Details |
---|---|---|---|---|---|
Optional ports, depending on what you want to monitor | |||||
Data Collector | https://*.cloud.com https://*.citrixworkspacesapi.net https://*.xendesktop.net |
TCP | 443 | HTTPS | Communication with Citrix Cloud |
Data Collector | https://management.azure.com | TCP | 443 | HTTPS | Communication with Microsoft Azure |
Data Collector | https://sts.amazonaws.com https://ec2.amazonaws.com |
TCP | 443 | HTTPS | Communication with AWS |
Data Collector | Citrix XenDesktop Controllers | TCP | 80/443 | HTTP/S | Communication with XenDesktop infrastructure |
Data Collector | Citrix XenServer Pool Master/Hosts | TCP | 80/443 | HTTP/S | Communication with XenServer Infrastructure (and RRD communications) |
Data Collector | Linux Client | TCP | 22 | SSH | Communications with Linux machines |
Data Collector | NetScalers | TCP | 80/443 | HTTP/S | Depending on what the administrator configured |
Data Collector | Nutanix/AHV | TCP | 9440 | Communication with Nutanix Infrastructure | |
Data Collector | VMware Horizon Connection Server | TCP | 443 | HTTPS | Communication with Horizon infrastructure |
Data Collector | VMware vCenter Server | TCP | 443 | HTTPS | Communication with vSphere infrastructure |
Other required Outbound Connections
Devices and servers used by ControlUp, providing configuration interface, data aggregration, upload and authorization validation for Solve access, and other services. This requires TCP 443 / SSL outbound connectivity to the following URLs:
ControlUp component in your environment | Purpose | URLs |
---|---|---|
Scoutbees Custom Hive | Receive configuration, task lists (API) and return scout results (Websockets) | https://api.scoutbees.io https://api.eu.scoutbees.io (EU Region) Websockets: https://ws.scoutbees.io https://ws.eu.scoutbees.io (EU Region) WebSocket - Default Port: 8008 Encapsulated WebSocket connection (via HDX protocol) from Custom Hive to VDAs. Relevant for StoreFront type scouts. HTTP/S - TCP Port 80 / 443:
|
PCs, macOS or thin clients monitored with Edge DX | Per tenant / customer URL: [tenant name].sip.controlup.com downloads.sip.controlup.com |
Web Browser Access
Administrators and other ControlUp users need to have web browser access (TCP port 443, https) to the following addresses:
Destination | Details |
---|---|
https://solve.controlup.com | ControlUp Solve Portal |
https://insights.controlup.com | ControlUp Insights Portal |
https://[tenant-name].sip.controlup.com https://maps.google.com |
Edge DX Portal |
https://app.scoutbees.io https://app.eu.scoutbees.io (EU Region) |
Scoutbees Portal |
Connection Requirements for APIs
Depending on if you plan to use the respective API, enable the following API URIs:
Destination | Type | Port | Protocol | Details |
---|---|---|---|---|
edgedx-functions.azurewebsites.net | TCP | 443 | HTTPS | Creating tenant for Edge DX |