Ports required when MOVE AV Multi-Platform clients are located in a Demilitarized Zone

Technical Articles ID: KB85246
Last Modified: 2023-03-24 19:58:21 Etc/GMT

Environment

Management for Optimized Virtual Environments (MOVE)
MOVE AntiVirus (AV) Multi-Platform 4.x
MOVE AV Multi-Platform Offload Scan Server (OSS)
MOVE AV Multi-Platform Security Virtual Appliance (SVA) Manager

For details of MOVE supported environments, see KB74865 - Supported platforms for Management for Optimized Virtual Environments.

Summary

When the Virtual Machines (VMs) are located in Demilitarized Zone (DMZ), several ports need to be open. The ports allow ePO communications between the VM clients and the OSS/SVA Manager.

Problem

The VM clients can communicate with the ePO server. But when you run the command mvadm status on the client, the following is displayed:

Primary Server:	NONE:9053 [Not Configured]
Secondary Server:	NONE:9053 [Not Configured]
SVA Manager:	XXXX.XXXX.XXXX.XXXX:8080 [Connecting]
Protection Status:	Disabled

When you perform a Telnet to the OSS on port 9053 (default port) fails, it even though it is possible to ping the OSS and SVA Manager. The above is seen when ePO administrators have changed the Offload Scan Server 4.x.x policy option Scan Server port and SVA Manager (default 8080) port.

Cause

Essential ports are closed, preventing the VM reaching the OSS, or the SVA Manager.

A Telnet test on the ports has to function. A successful test allows the VM client to contact to the OSS, and the SVM Manager.

Solution

To allow ePO communications between the VM clients, and the OSS/SVA Manager, make sure that the following communication ports are open. (Default port numbers are shown - replace these with the relevant ports in your environment:)

8080 - Communication between SVA Manager and the client
8081 - Communication between ePO and Agent
8443 - Communication between SVA Manager and the OSS
9053 - Communication between the VM client and the OSS server

Affected Products

Languages:

This article is available in the following languages:

Knowledge Center

Ports required when MOVE AV Multi-Platform clients are located in a Demilitarized Zone

Environment

Summary

Problem

Cause

Solution

Affected Products

Languages:

Title

Title

Knowledge Center

Ports required when MOVE AV Multi-Platform clients are located in a Demilitarized Zone

Environment

Summary

Problem

Cause

Solution

Affected Products

Languages:

Choose your region

Title

Title