ESET PROTECT Server can be installed on the same computer as the database, ESET PROTECT Web Console and HTTP Proxy. The diagram below shows the separated installation and the used ports (arrows indicate the network traffic):
The tables below list all possible network communication ports used when ESET PROTECT On-Prem and its components are installed in your infrastructure. Additional communication occurs via the native operating system processes (for example, NetBIOS over TCP/IP).
|
|
For the proper function of the ESET PROTECT On-Prem, other applications should not use any of the ports below.
Ensure to configure any firewall(s) within your network to allow communication via the ports listed below.
|
Client (ESET Management Agent) or ESET Bridge (HTTP Proxy) machine
Protocol
|
Port
|
Descriptions
|
TCP
|
2222
|
Communication between ESET Management Agents and ESET PROTECT Server
|
TCP
|
80
|
Connection to the ESET repository
|
MQTT
|
8883, 443
|
ESET Push Notification Service—Wake-Up calls between ESET PROTECT Server and ESET Management Agent, 443 is failover port.
|
TCP
|
3128
|
Communication with ESET Bridge (HTTP Proxy)
|
TCP
|
443
|
Communication with ESET LiveGuard Advanced (Proxy only)
|
ESET Management Agent—ports used for remote deployment to a target computer with Windows OS:
Protocol
|
Port
|
Descriptions
|
TCP
|
139
|
Using the share ADMIN$
|
TCP
|
445
|
Direct access to shared resources using TCP/IP during remote installation (an alternative to TCP 139)
|
UDP
|
137
|
Name resolution during remote install
|
UDP
|
138
|
Browse during remote install
|
|
ESET PROTECT Web Console machine (if not the same as ESET PROTECT Server machine)
ESET PROTECT Server machine
Protocol
|
Port
|
Descriptions
|
TCP
|
2222
|
Communication between ESET Management Agent and ESET PROTECT Server
|
TCP
|
80
|
Connection to the ESET repository
|
MQTT
|
8883
|
ESET Push Notification Service—Wake-Up calls between ESET PROTECT Server and ESET Management Agent
|
TCP
|
2223
|
DNS resolving and MQTT fallback
|
TCP
|
3128
|
Communication with ESET Bridge (HTTP Proxy)
|
TCP
|
1433 (Microsoft SQL)
3306 (MySQL)
|
Connection to an external database (only if the database is on another machine).
|
TCP
|
389
|
LDAP synchronization. Open this port also on your AD controller.
|
UDP
|
88
|
Kerberos tickets (applies only to ESET PROTECT Virtual Appliance)
|
|
Rogue Detection (RD) Sensor
Protocol
|
Port
|
Descriptions
|
TCP
|
22, 139
|
Detection of operating system via SMB (TCP 139) and SSH (TCP 22) protocols.
|
UDP
|
137
|
Computer hostname resolution via NetBIOS.
|
|
The pre-defined ports 2222, 2223 can be changed if necessary.
