15. Reference of Default Port NumbersΒΆ

The reference lists port numbers the ABC SBC uses. It is particularly useful when considering firewall policies for firewalls placed in front of the ABC SBC. The reference lists default port numbers, transport protocols and the interface on which the respective applications are permitted. In addition to the SBC interfaces (see SBC Interfaces), some applications may be listening on all interfaces and some management applications are using the loopback interface for internal communication.

Note that while the ABC SBC only accepts traffic on the ports and interfaces specified in this specification, further restrications may apply. Signaling is only accepted from well-defined Call Agents and certain traffic may be blacklisted (see Manual SIP Traffic Blocking).

Default Port Number, Transport, interface Description Can be Changed
ssh/22/TCP, XMI or * Secure shell server. Used for remote management. Global Config/ Firewall / Block SSH access to other than XMI and IMI interfaces.
SMTP/25/TCP, loopback Local E-mail relay. Used to forward email alerts. From outside perspective it acts as client. No.
domain/53/TCP, loopback local DNS resolver. From outside perspective it acts as client. no
     
SNMP/161/UDP, loopback and XMI internal SNMP management Global Config / Firewall / Allow SNMP on XMI interface
https/443/TCP, XMI or *

Administrative GUI.

Tryit WebRTC Demo, using /tryit path.

Global Config / Firewall/ Block HTTPS gui access to other than XMI interface. For the tryit page, on/off under Global config / Misc / Enable tryit
http/80/TCP, XMI or * Redirect to https for Administrative GUI. Global Config / Firewall/ Block HTTPS gui access to other than XMI interface.
https/1443/TCP,XMI or * XMLRPC provisioning Global Config / Firewall/ Block HTTPS gui access to other than XMI interface.
3306/TCP,none mariadb configuration (UNIX sockets enforce) no no
sip/5060/UDP+TCP, SI SIP signaling signaling interface configuration
sip/5061/TLS, SI SIP signaling over TLS. The port number is always SIP port + 1. Global Config/SSL/ Enable TLS
6379-6380/TCP,XMI redis replication no
8080/TCP, WI 8081/TCP, WI SIP over Websocket WebRTC websocket signaling interface configuration
8090/TCP, loopback xml-rpc remote programming interface; in use by co-located applications no
10000-60000/UDP, MI Audio/video media. media interface configuration
15441/TCP, * 4443/TCP webconference demo available only on request

Additional fixed source port numbers shall be opened for the ABC SBC acting as client reaching outside servers as listed in the following table:

SBC Client Port Description
NTP/123/UDP Time Synchronization
domain/53/UDP DNS Resolver

Other applications running on the ABC SBC use external applications while locally binding to ephemeral ports.

Remote Server Port Description
HTTP/80 Software package updates
HTTPS/443 Software package updates
syslog/514 remote syslog facility if configured under Global Config / syslog-ng
rsync/873 remote PCAP/WAW storage if enabled under Global Config / replicate recordings / traffic log
rsync/1873,2873 remote PCAP/WAW storage if enabled under Global Config / replicate recordings / traffic log, using TLS if secure connection to ABC Monitor enabled
rsync/874 config transfer from configuration master to ABC SBC nodes
6379,redis redis replication and event generation to a ABC Monitor
16379,26379,redis redis replication and event generation to a ABC Monitor over TLS if enabled
SMTP/25 email alerts

Previous topic

14. Reference of Used Open-Source Software

Next topic

16. Glossary

This Page