Contents x
Communication Ports Used By ControlUp: Hybrid Cloud
  • Print
  • Dark
    Light
  • PDF
Contents

Communication Ports Used By ControlUp: Hybrid Cloud

  • Print
  • Dark
    Light
  • PDF

CU DEX Mgmt Platform - Hybrid Cloud Mode.png

Required Communication Ports

Here are all the communication ports you need for ControlUp to work properly. Our integrations require you to whitelist certain ports and URLs when using them, as well as mandatory outbound URLs.

Network Tester Tool

To verify connectivity from ControlUp products and components, you can use our network tester tool which checks connectivity to all required outbound URLs.

From the Console Machine

Source Destination Type Port Protocol Details
Mandatory outbound URLs
Console fe1.controlup.com TCP 443 HTTPS ControlUp configuration
Console fe2.controlup.com TCP 443 HTTPS ControlUp configuration
Console fe3.controlup.com TCP 443 HTTPS ControlUp configuration
Console fe4.controlup.com TCP 443 HTTPS ControlUp configuration
Console rt-app.controlup.com TCP 443 HTTPS ControlUp configuration
Console uploader-eu-central-1.controlup.com TCP 443 HTTPS GDPR front end servers
Console cu-ca-eu.controlup.com TCP 443 HTTPS Central Auditing
Console cu-ca-us.controlup.com TCP 443 HTTPS Central Auditing
Mandatory ports
Console ControlUp Agent TCP 135 - 139, 445, 49152-65535 RPC / WMI / SMB Agent deployment and upgrades via the console certain built-in actions, such as restarting the agent
Console ControlUp Agent TCP 40705 WCF Console to agent communication
Console ControlUp Monitor TCP 40706 WCF Console to monitor communication
Console ControlUp Monitor TCP 135 - 139, 445, 49152-65535 RPC / WMI / SMB Monitor deployment from the console
Console Data Collector TCP 40705 WCF Console to data collector communication
Console Domain Controller TCP 389 LDAP LDAP communication with Domain Controllers
Optional ports, depending on what you want to monitor
Console https://*.cloud.com
https://*.citrixworkspacesapi.net
https://*.xendesktop.net		 TCP 443 HTTPS Communication with Citrix Cloud
Console Citrix XenDesktop Controllers TCP 80/443 HTTP/S Communication with XenDesktop infrastructure
Console Citrix XenServer Pool Master/Hosts TCP 80/443 HTTP/S Communication with XenServer Infrastructure (and RRD communications)
Console Linux Client TCP 22 SSH Communications with Linux machines
Console NetScalers TCP 80/443 HTTP/S Depending on what the administrator configured
Console Nutanix/AHV TCP 9440 Communication with Nutanix Infrastructure
Console VMware Horizon Connection Server TCP 443 HTTPS Communication with Horizon infrastructure
Console VMware vCenter Server TCP 443 HTTPS Communication with vSphere infrastructure

From the Monitor Machine

Source Destination Type Port Protocol Details
Mandatory outbound URLs
Monitor rt-app.controlup.com TCP 443 HTTPS ControlUp configuration
Monitor uploader-eu-central-1.controlup.com TCP 443 HTTPS GDPR front end servers
Monitor cu-ca-eu.controlup.com TCP 443 HTTPS Central Auditing
Monitor cu-ca-us.controlup.com TCP 443 HTTPS Central Auditing
Monitor insights-hec.controlup.com TCP 443 HTTPS Insights historical data upload
Monitor mp.controlup.com TCP 443 HTTPS Solve
Monitor solve.controlup.com TCP 443 HTTPS Required to use Solve actions
Monitor s3.amazonaws.com TCP 443 HTTPS Upload historical data for Insights and Solve
Monitor *.s3.eu-central-1.amazonaws.com TCP 443 HTTPS Upload historical data for Insights and Solve
Mandatory ports
Monitor ControlUp Agent TCP 135 - 139, 445, 49152-65535 RPC / WMI / SMB Agent deployment via the monitor
Monitor ControlUp Agent TCP 40705 WCF Monitor to agent communication
Monitor ControlUp Monitor TCP 40706 WCF Inter-Monitor communication
Monitor ControlUp Monitor TCP 135 - 139, 445, 49152-65535 RPC / WMI / SMB Monitor deployment from the console
Monitor Data Collector TCP 40705 WCF Monitor to data collector communication
Monitor Domain Controller TCP 389 LDAP LDAP communication with Domain Controllers
Optional ports, depending on what you want to monitor
Monitor https://*.cloud.com
https://*.citrixworkspacesapi.net
https://*.xendesktop.net		 TCP 443 HTTPS Communication with Citrix Cloud
Monitor Citrix XenDesktop Controllers TCP 80/443 HTTP/S Communication with XenDesktop infrastructure
Monitor Citrix XenServer Pool Master/Hosts TCP 80/443 HTTP/S Communication with XenServer Infrastructure (and RRD communications)
Monitor Linux Client TCP 22 SSH Communications with Linux machines
Monitor NetScalers TCP 80/443 HTTP/S Depending on what the administrator configured
Monitor Nutanix/AHV TCP 9440 Communication with Nutanix Infrastructure
Monitor SMTP Server TCP 25 SMTP Email alerts
Monitor VMware Horizon Connection Server TCP 443 HTTPS Communication with Horizon infrastructure
Monitor VMware vCenter Server TCP 443 HTTPS Communication with vSphere infrastructure

From the Data Collector Machine

Source Destination Type Port Protocol Details
Optional ports, depending on what you want to monitor
Data Collector https://*.cloud.com
https://*.citrixworkspacesapi.net
https://*.xendesktop.net		 TCP 443 HTTPS Communication with Citrix Cloud
Data Collector https://management.azure.com TCP 443 HTTPS Communication with Microsoft Azure
Data Collector https://sts.amazonaws.com
https://ec2.amazonaws.com		 TCP 443 HTTPS Communication with AWS
Data Collector Citrix XenDesktop Controllers TCP 80/443 HTTP/S Communication with XenDesktop infrastructure
Data Collector Citrix XenServer Pool Master/Hosts TCP 80/443 HTTP/S Communication with XenServer Infrastructure (and RRD communications)
Data Collector Linux Client TCP 22 SSH Communications with Linux machines
Data Collector NetScalers TCP 80/443 HTTP/S Depending on what the administrator configured
Data Collector Nutanix/AHV TCP 9440 Communication with Nutanix Infrastructure
Data Collector VMware Horizon Connection Server TCP 443 HTTPS Communication with Horizon infrastructure
Data Collector VMware vCenter Server TCP 443 HTTPS Communication with vSphere infrastructure

Other required Outbound Connections

Devices and servers used by ControlUp, providing configuration interface, data aggregration, upload and authorization validation for Solve access, and other services. This requires TCP 443 / SSL outbound connectivity to the following URLs:

ControlUp component in your environment Purpose URLs
Scoutbees Custom Hive Receive configuration, task lists (API) and return scout results (Websockets) https://api.scoutbees.io
https://api.eu.scoutbees.io (EU Region)

Websockets:
https://ws.scoutbees.io https://ws.eu.scoutbees.io (EU Region)

WebSocket - Default Port: 8008

Encapsulated WebSocket connection (via HDX protocol) from Custom Hive to VDAs. Relevant for StoreFront type scouts.

HTTP/S - TCP Port 80 / 443:
  • Custom Hive => StoreFront / Netscaler (HTTP/S)
  • Custom Hive => XenDesktop Brokers (HTTP/S)
  • Custom Hive => VMware Horizon Connection Server (HTTPS)
  • Custom Hive => VMware UAG (HTTPS)
PCs, macOS or thin clients monitored with Edge DX Per tenant / customer URL:
[tenant name].sip.controlup.com downloads.sip.controlup.com

Web Browser Access

Administrators and other ControlUp users need to have web browser access (TCP port 443, https) to the following addresses:

Destination Details
https://solve.controlup.com ControlUp Solve Portal
https://insights.controlup.com ControlUp Insights Portal
https://[tenant-name].sip.controlup.com
https://maps.google.com		 Edge DX Portal
https://app.scoutbees.io
https://app.eu.scoutbees.io (EU Region)		 Scoutbees Portal

Connection Requirements for APIs

Depending on if you plan to use the respective API, enable the following API URIs:

Destination Type Port Protocol Details
edgedx-functions.azurewebsites.net TCP 443 HTTPS Creating tenant for Edge DX
Was this article helpful?
What's Next