Ports required for HPE OneView

HPE OneView requires specific ports to be available to the appliance to manage servers, enclosures, and interconnects.

Table 1: Ports required for HPE OneView

Port number

Protocol

Use

Description

22

TCP

Inbound and Outbound

Used for SSH and SFTP. SSH is required to communicate with VC Ethernet and FlexFabric interconnect modules. SFTP is required for actions such as firmware upgrades and support dumps.

53

UDP and TCP

Outbound

Used for DNS client queries.

80

TCP

Inbound

Used for the HTTP interface. Typically, this port redirects to port 443; this port provides the access required by the iLO. This port is used by SUT and iSUT for VMware ESXi to connect to the HPE OneView web server.

123

UDP

Inbound

HPE OneView acts as an NTP server, iLO and Onboard Administrator requires access.

123

UDP

Outbound

Used as an NTP client to synchronize the appliance time.

161

UDP

Inbound and Outbound

Supports SNMP GET calls to monitored and managed devices, such as, server iLOs, iPDU, and SAN Managers.

Supports SET calls using SNMPv3 for managed devices and SNMPv1 for iPDUs, such as toggling iPDU locator lights and outlet power control.

162

UDP

Inbound and Outbound for trap forwarding from HPE OneView

Used for SNMP trap support from the iLO, Onboard Administrator, and iPDU devices. This port is also used to monitor the VC interconnects and trap forwarding.

443

TCP

Inbound

Used for the HTTPS interface to user interface and APIs. This port is used by SUT for VMware ESXi to connect to the HPE OneView web server.

443

TCP

Outbound

Used for secure SSL access to the iLO, Onboard Administrator, remote support access to Hewlett Packard Enterprise, and other devices.

Used for Redfish, RIBCL, SOAP, and iPDU communication.

636

TCP

Outbound

Secure LDAP. Used for enterprise directory integration (Microsoft Active Directory, OpenLDAP)

2162

UDP

Inbound

Used as an alternative SNMP trap port.

3269

TCP

Outbound

Used for Microsoft Active directory LDAP global catalog port.

5671

TCP

Inbound

Allows external scripts or applications to connect to and monitor messages from the SCMB (State-Change Message Bus).

17988

TCP

iLO Integrated Remote Console to iLO

Integrated Remote Console initiating a connection to the iLO.

17990

TCP

Browser to iLO

Provides browser access to the integrated remote console.

50443

TCP

Outbound

Used for RIBCL protocol communication over SSL. This port manages iPDU and related actions. The port collects utilization data to monitor the status and health of iPDU.

63001 and 63002

TCP

Local, on host OS

Used on the host OS where SUT (Smart Update Tools) is installed. The communication is on the localhost between the SUT and SUM (Smart Update Manager) processes.