Topic
  • 4 replies
  • Latest Post - ‏2012-11-13T01:17:03Z by ShigeT
ShigeT
ShigeT
11 Posts

Pinned topic Command Port of iOS Extender

‏2012-11-09T02:28:27Z |
Hi,

When to use "Command Port" of iOS Extender ?
( Default port number : 52315 )

I want to know source( TEM Server? ) and Use Cases.

I investigated it with Wireshark but I couldn't understand.

Thanks!
Shige
Updated on 2012-11-13T01:17:03Z at 2012-11-13T01:17:03Z by ShigeT
  • SystemAdmin
    SystemAdmin
    184 Posts

    Re: Command Port of iOS Extender

    ‏2012-11-10T17:55:09Z  
    Hi Shige

    I have a full running implementation of MDM managing iOS and android. I followed the instructions and just reviewed them and cannot find the port you are asking about.

    My servers are behind several firewalls and that port has not been opened. The ports open are shown in the wiki
    https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager/page/Installing%20Management%20Extender%20for%20Apple%20iOS

    Please can you expand on what you are trying to achieve and where you have seen the documenation about the command port

    Paul
  • ShigeT
    ShigeT
    11 Posts

    Re: Command Port of iOS Extender

    ‏2012-11-12T01:35:39Z  
    Hi Shige

    I have a full running implementation of MDM managing iOS and android. I followed the instructions and just reviewed them and cannot find the port you are asking about.

    My servers are behind several firewalls and that port has not been opened. The ports open are shown in the wiki
    https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager/page/Installing%20Management%20Extender%20for%20Apple%20iOS

    Please can you expand on what you are trying to achieve and where you have seen the documenation about the command port

    Paul
    Hi Paul,

    Thank for your reply.

    I configured Port 52315 in "Configure Extender" - "General Extender Settings" - "Command Port".
    Default of this "Command Port" is 52315.
    (please see the attached file)

    I can see the parameter of port in the configuration file.
    -> "C:\Program Files\BigFix Enterprise\Management Extender\MDM Provider\config\config.yaml"

    According to the description of the following Wiki,
    https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager/page/MDM%20Components%20Configuration%20Settings

    The port on which commands are issued to the iOS server via the Proxy Agent Plugin.
    This port should only be accessible via localhost in order to ensure security.


    Communication Flow is as follows:
    ??? => (???) Proxy Agent Plugin=> (52315) iOS Server

    I want to know "???".

    Best Regards,
    Shige
  • SystemAdmin
    SystemAdmin
    184 Posts

    Re: Command Port of iOS Extender

    ‏2012-11-12T13:11:14Z  
    • ShigeT
    • ‏2012-11-12T01:35:39Z
    Hi Paul,

    Thank for your reply.

    I configured Port 52315 in "Configure Extender" - "General Extender Settings" - "Command Port".
    Default of this "Command Port" is 52315.
    (please see the attached file)

    I can see the parameter of port in the configuration file.
    -> "C:\Program Files\BigFix Enterprise\Management Extender\MDM Provider\config\config.yaml"

    According to the description of the following Wiki,
    https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager/page/MDM%20Components%20Configuration%20Settings

    The port on which commands are issued to the iOS server via the Proxy Agent Plugin.
    This port should only be accessible via localhost in order to ensure security.


    Communication Flow is as follows:
    ??? => (???) Proxy Agent Plugin=> (52315) iOS Server

    I want to know "???".

    Best Regards,
    Shige
    Hi Shige

    my understanding is that port is used internally by the app server to initate the communication with APNS. It says in the documentation that it should be restricted to localhost for security reasons.

    To my mind this is an internal command port which in reality could have been hidden in a config file.

    As far as i can tell the only communication for APNS is on the 2 ports defined 2195 and 2196. In the mdm diagnostics nothing is shown about the command port.

    Thus in reality you will never capture any network traffic for this command port.

    Does this help?

    Paul
  • ShigeT
    ShigeT
    11 Posts

    Re: Command Port of iOS Extender

    ‏2012-11-13T01:17:03Z  
    Hi Shige

    my understanding is that port is used internally by the app server to initate the communication with APNS. It says in the documentation that it should be restricted to localhost for security reasons.

    To my mind this is an internal command port which in reality could have been hidden in a config file.

    As far as i can tell the only communication for APNS is on the 2 ports defined 2195 and 2196. In the mdm diagnostics nothing is shown about the command port.

    Thus in reality you will never capture any network traffic for this command port.

    Does this help?

    Paul
    Hi Paul,

    I understood well.

    Thanks!
    Shige