Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Configuration via its web management interface
  2. Communication and licensing of Snare Agents

If deploying the SAM for use for agents running on the Internet, then it is recommended to use the SAM in a DMZ and only expose the tcp port 6262 to the internet for client systems to connect to. Its considered general security practice to never expose the corporate LAN systems to the Internet directly. The web management port for the SAM should be under access restrictions due to providing admin access to the application. This concept is the same for when the SAM in Snare Central is used for providing agent license access to systems on the Internet, ie the Snare Central server for this should be a separate server running in the DMZ. 

The table below outlines the default ports used for each Snare products when communicating with SAM.

Snare ProductProtocol*Listening PortUse

Snare Agent Manager

TCP










6261

Web Management Interface

6262Inbound communication from v5 Snare Enterprise Agents

Snare Enterprise Agent for Windows

6161


Accessed by SAM during Network Scans






Snare Enterprise Agent for Linux
Snare Enterprise Agent for Solaris
Snare Enterprise Agent for OSX
Snare Enterprise Epilog for Windows

6162

Snare Enterprise Epilog for Unix
Snare Enterprise Agent for MSSQL6163
Snare OpenSource6161

*Default ports

Agent Management Console (via Snare Server)

...

The table below outlines the default ports used for each Snare products when communicating with AMC.

Snare ProductProtocol*Listening Port
Agent Management Console (via Snare Server)TCP







80 or 443

Snare Enterprise Agent for Windows

6161


Snare Enterprise Agent for Linux
Snare Enterprise Agent for Solaris
Snare Enterprise Agent for OSX
Snare Enterprise Epilog for Windows6162
Snare Enterprise Epilog for Unix
Snare Enterprise Agent for MSSQL6163
Snare OpenSource6161

*Default ports

Snare Enterprise Agents - Web Management Interface

...

The table below outlines the default ports used by each Agent.

Snare ProductProtocol*Listening Port

Snare Enterprise Agent for Windows

TCP






6161

 

 



Snare Enterprise Agent for Linux

Snare Enterprise Agent for Solaris

Snare Enterprise Agent for OSX

 Snare Enterprise Epilog for Windows6162
Snare Enterprise Epilog for Unix
Snare Enterprise Agent for MSSQL6163

*Default ports

Note
The default port is used independent of HTTP or HTTPS configuration for the web management interface.

 

...