my customer is having a security project were all assets will be moved to a secured network. For this we need to know how the oncommand products are communicating with external systems. (e.g. ASUSP, autoupdate,RSA)
So my question how are inbound and and outband connection to oncommand insight except mangement?
Here is a spreadsheed how the customer wants to have a feedback:
Is there are place where this is documented, for all NetApp Products:
To confirm communication ports that are in place at your site(s) run netstat (both Windows and Linux); and on the filers and hosting software components. On Linux and Windows hosts you can use find and grep commands to be more specific; look up man pages for command line options of netstat.
netstat -aon | find /i "listening"
netstat -aon | find /i "established"
netstat -nat | grep LISTEN
netstat -nat | grep ESTABLISHED
So for example on your "oncommand insight" host run the appropriate netstat options you are seeking.
If you are using EMC Solutions Enabler in client/server mode, you have Solutions Enabler installed on the OCI point of acquisition - either the "local" Acquisition Unit ("SANscreen Acq" service) on the OCI operational server, or on a Remote Acquisition Unit (RAU). Solutions Enabler will initiate tcp connections to the storsrvd daemon, listening on tcp 2707 on your "server" Solutions Enabler server (defined as having fc connectivity + gatekeepers presented from a Symmetrix).
If you are using SMI-S for Symmetrix performance collection, OCI will initiate connections to 5988 / 5989 (unencrypted / SSL/TLS encrypted SMI-S respectively)