https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17158#M3530 <HTML><HEAD></HEAD><BODY><P>No it doesn't - only the static ports listed in the document posted by Adai are used.</P></BODY></HTML> Wed, 13 Jun 2012 13:13:04 GMT hiyer 2012-06-13T13:13:04Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17135#M3521 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>IHAC that had a thorough review by security exprts.</P><P>one of their findings was list of ports being listened with "*" source IP.</P><P>the ports are over TCP &amp; UDP, and are dynamic - changing with every service restart</P><P>the process listening is "dfmmonitor" &amp; "dfmeventd" </P><P>these ports are not documented.</P><P></P><P>I would like to know if possible to configure application not to listen to these ports or at least open them on localhost only.</P><P></P><P>Thank you in Advance,</P><P>Avishay Mano </P></BODY></HTML> Thu, 05 Jun 2025 07:03:06 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17135#M3521 avishay 2025-06-05T07:03:06Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17139#M3523 <HTML><HEAD></HEAD><BODY><P>There is no way to do this today.</P><P>Pls raise a request for enhancement for the same.</P><P></P><P>Regards</P><P>adai</P></BODY></HTML> Fri, 24 Dec 2010 06:15:20 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17139#M3523 adaikkap 2010-12-24T06:15:20Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17144#M3525 <HTML><HEAD></HEAD><BODY><P>Avishay,</P><P></P><P>I am currently having the same problem at my customer with regard to use of dynamic UDP ports.&nbsp; We can't even identify which services are using the ports.&nbsp; In your case were "dfmmonitor" &amp; "dfmeventd" listening on dynamic ports on the filer? Did you ever find an answer to how to secure the system from opening these dynamic ports?</P><P></P><P>Thank you in advance for any insight.&nbsp; We are running up against some regulation issues and need solve this security problem.&nbsp; </P><P></P><P>Best Regards,</P><P>Joyce</P></BODY></HTML> Fri, 08 Jun 2012 14:20:38 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17144#M3525 joycem 2012-06-08T14:20:38Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17149#M3527 <HTML><HEAD></HEAD><BODY><P>Hi Joyce,</P><P>&nbsp;&nbsp;&nbsp;&nbsp; Looks like there is no way in the current product to make them listen in fixed ports. For a detailed list of port used by DFM pls take at look at the below FAQ link.</P><P></P><P><A class="active_link" href="https://library.netapp.com/ecmdocs/ECMM1278650/html/faq/index.shtml#_3.14" title="https://library.netapp.com/ecmdocs/ECMM1278650/html/faq/index.shtml#_3.14" target="_blank">https://library.netapp.com/ecmdocs/ECMM1278650/html/faq/index.shtml#_3.14</A></P><P></P><P>Regards</P><P>adai</P></BODY></HTML> Wed, 13 Jun 2012 06:31:40 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17149#M3527 adaikkap 2012-06-13T06:31:40Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17153#M3528 <HTML><HEAD></HEAD><BODY><P>Thanks for the response.&nbsp; I don't see any info on dynamic ports in use in the FAQ.&nbsp; Can you tell me if DFM requires any dynamic ports to be open on the FAS system itself?&nbsp; </P><P></P><P>Thanks,</P><P>Joyce</P></BODY></HTML> Wed, 13 Jun 2012 13:05:25 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17153#M3528 joycem 2012-06-13T13:05:25Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17158#M3530 <HTML><HEAD></HEAD><BODY><P>No it doesn't - only the static ports listed in the document posted by Adai are used.</P></BODY></HTML> Wed, 13 Jun 2012 13:13:04 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/Securing-dynamic-UDP-TCP-ports-used-by-OM-application-and-not-documented/m-p/17158#M3530 hiyer 2012-06-13T13:13:04Z