====== List of services & open ports ====== DHD devices require some networked connections for the interconnection and system functions to work correctly. **Note**\\ This document is valid for devices running firmware and kernel version 10.0 and newer. ===== Required by OS (All Devices) ===== Ports are open / services are allowed on all networked DHD devices with firmware and kernel version 10.0 and newer. ^Port^Service/Protocol^UDP/TCP^In-/Outbound^Connector^Note^Configurable^ | |ICMP/Ping|ICMP| |All|Internet Control Message Protocol|No| | |IGMP|IGMP| |All|Internet Group Management Protocol|No| |22|DHD Maintenance|TCP|In- & Outbound|All|Required by DHD|Yes| |53|DNS|UDP/TCP|In- & Outbound|All|Domain Name System|No| ===== XC3 Cores ===== Applies to all XC3 cores (52-7520, 52-7523, 52-7524). Available connectors: * IPx P * IPx S ^Port^Service/Protocol^UDP/TCP^In-/Outbound^Connector^Note^Configurable^ |80|WebApps\\ Control Interface|TCP|Inbound|All|Web Apps & Control Interface|Yes| |123|NTP|UDP/TCP|In- & Outbound|IPx P|Network Time Protocol, required for TFT clock display and licensing|No| |161\\ 162|SNMP|UDP/TCP|In- & Outbound|All|IP-Based device monitoring|Yes| |443|WebApps\\ Control Interface|TCP|Inbound|All|Web Apps & Control Interface (SSL/TLS secured)|Yes| |514|Syslog|TCP/UDP|Outbound|User Configurable*|Syslog system logging|Yes| |2008|ECP|TCP|In- & Outbound|IPx P|DHD external control protocol|Yes| |2009\\ 2019|DHD Device Broadcast & Logic Exchange|UDP|In- & Outbound|IPx P|Device broadcast for discovery via DHDCS and core to core logic exchange|No| |3002\\ 3003|DHD User Server|TCP|Inbound|All|Provides central authentication services|Yes| |3008|Toolbox Config Transfer|TCP|Inbound|IPx P|Receives Toolbox Configurations|No| |3009\\ 3113|DHD APC Protocol|TCP/UDP|In- & Outbound|IPx P|Required for Control Link & Views App (Windows exe)|No| |5353|mDNS|UDP|Inbound|All|Multicast-based Domain Name System, required for AES67 stream and DHD device discovery|Yes| |9000-\\ 9255|Ember+|TCP|Inbound|All|Ember+ control protocol (and out of band controlled AES67 interfaces)|Yes| *Only one port possible ==== With 52-8546 AES67 RAVENNA 16×16 license ==== With 52-8546 AES67 RAVENNA 16×16 license all ports mentioned above apply, complemented by the following. ^Port^Service/Protocol^UDP/TCP^In-/Outbound^Connector^Note^Configurable^ |319\\ 320|PTP|UDP|In- & Outbound|All|Precision Time Protocol, only on AES67 / Ravenna capable devices|No| |554|RTSP|TCP|Inbound|All|Real-Time Streaming Protocol|No| ===== XD3 Cores ===== Applies to all XD3 cores (52-7550). Available connectors: * ETH1 / ETH2 (redundant bond device) * ETH3 * ETH4 ^Port^Service/Protocol^UDP/TCP^In-/Outbound^Connector^Note^Configurable^ |80|WebApps\\ Control Interface|TCP|Inbound|All|Web Apps & Control Interface|Yes| |123|NTP|UDP/TCP|In- & Outbound|ETH1/ETH2|Network Time Protocol, required for TFT clock display and licensing|No| |161\\ 162|SNMP|UDP/TCP|In- & Outbound|All|IP-Based device monitoring|Yes| |443|WebApps\\ Control Interface|TCP|Inbound|All|Web Apps & Control Interface (SSL/TLS secured)|Yes| |514|Syslog|TCP/UDP|Outbound|User Configurable*|Syslog system logging|Yes| |2008|ECP|UDP|In- & Outbound|ETH4|DHD external control protocol|Yes| |2009\\ 2019|DHD Device Broadcast & Logic Exchange|UDP|In- & Outbound|ETH4|Device broadcast for discovery via DHDCS and core to core logic exchange|No| |3002\\ 3003|DHD User Server|TCP|Inbound|All|Provides central authentication services|Yes| |3008|Toolbox Config Transfer|TCP|Inbound|ETH4|Receives Toolbox Configurations|No| |3009\\ 3113|DHD APC Protocol|TCP/UDP|In- & Outbound|ETH4|Required for Control Link & Views App (Windows exe)|No| |5353|mDNS|UDP|Inbound|All|Multicast-based Domain Name System, required for AES67 stream and DHD device discovery|Yes| |9000-\\ 9255|Ember+|TCP|Inbound|All|Ember+ control protocol (and out of band controlled AES67 interfaces)|Yes| *Only one port possible ===== AES67 Interfaces ===== Applies to AES67 Ravenna interfaces (52-7567, 52-7067) with minimum firmware & kernel version 10.0. Available connectors: * IPx P * IPx S ^Port^Service/Protocol^UDP/TCP^In-/Outbound^Connector^Note^Configurable^ |80|WebApps\\ Control Interface|TCP|Inbound|All|Web Apps & Control Interface|Yes| |123|NTP|UDP/TCP|In- & Outbound|IPx P|Network Time Protocol, required for licensing|No| |161\\ 162|SNMP|UDP/TCP|In- & Outbound|All|IP-Based device monitoring|Yes| |319\\ 320|PTP|UDP|In- & Outbound|All|Precision Time Protocol, only on AES67 / Ravenna capable devices|No| |443|WebApps\\ Control Interface|TCP|Inbound|All|Web Apps & Control Interface (SSL/TLS secured)|Yes| |514|Syslog|UDP/TCP|Outbound|User Configurable*|Syslog system logging|Yes| |554|RTSP|TCP|In- & Outbound|All|Real-Time Streaming Protocol|No| |2009|DHD Device Broadcast|UDP|IPx P|Device broadcast for discovery via DHDCS|Yes| |5353|mDNS|UDP|Inbound|All|Multicast-based Domain Name System, required for AES67 stream and DHD device discovery|Yes| |8890|NMOS|TCP|Inbound|All|NMOS protocol services (license required)|Yes| |9000|Ember+|TCP|Inbound|All|Ember+ control protocol|Yes| *Only one port possible