Ports for collecting metadata from devices

View the ports that are used to connect to and collect metadata from storage systems, switches, and fabrics.

Important: IBM Storage Insights uses TLS 1.2 protocol for communicating on storage system ports. It does not use TLS 1.3, and TLS 1.1 and 1.0 are disabled by default for increased security. For Cisco and Brocade switches, TLS 1.3 is supported.
Firewall requirements for data collectors: If data collectors are installed, keep in mind the following considerations:
  • Update your firewall rules to allow outbound communication on the default HTTPS port 443 using the Transmission Control Protocol (TCP). The User Datagram Protocol (UDP) is not supported.
  • Update your firewall rules to allow outbound communication to the following network endpoint: https://insights.ibm.com. If you use a proxy server with a separate firewall, ensure that you also update its rules.
  • IBM Storage Insights does not use a static IP address. For communication, data collectors access the endpoint https://insights.ibm.com only.

In the following list of ports, the terms inbound and outbound are used from the perspective of the data collector. For example, port 1751 is used by the data collector to listen for event communications from DS8000® storage systems.

Table 1. Ports that are used by IBM Storage Insights
Devices Default ports

DS8000
The following ports are used:
  • Inbound: 1751 is used for events. If port 1751 is not available, the outbound port 1750 on the HMC is used.
  • Inbound and Outbound: 1755 is used for offloading logs

IBM Storage Scale
The following ports are used:
  • Outbound: 9084 is used for performance data collection on the IBM Spectrum® Scale cluster node where the collector component is running.
  • Outbound: 22 for SSH
To collect performance metadata, complete the following actions:
IBM Spectrum Scale 5.1.0 and earlier:
Ensure that the queryinterface property is set to "0.0.0.0" in the ZIMonCollector.cfg file on the cluster node.
queryinterface="0.0.0.0"
IBM Spectrum Scale 5.1.1 and later:
Ensure that the zimon/ZIMonCollector.cfg file on the cluster node includes the following properties: 

fallbackqueryinterface = "0.0.0.0" # "0.0.0.0" to allow remote connections (or "::0" for IPv6)
fallbackqueryport = "9084”

For more information,see Configuring the collection of performance data for IBM Storage Scale

IBM SAN Volume Controller

IBM Storage Virtualize for Public Cloud
Storwize
V7000
Storwize V7000 Unified
IBM
Storage FlashSystem devices that run IBM Storage Virtualize
IBM Storage FlashSystem 900
The following ports are used:
  • Outbound: 22 for SSH
  • Outbound: 5989

    Optionally, the SSH key can be uploaded once at setup time using the 5989 port.

For IBM Storage FlashSystem 900:
  • The SNMP port that is used for performance monitoring is 161 (UDP).
  • The SNMP agent must be enabled for a storage system before IBM Storage Insights can collect its performance metadata.

For IBM Storage Virtualize for Public Cloud, the data collector host must have outbound access to the IBM Storage Insights instance.

IBM
XIV Storage System
IBM Storage Accelerate
IBM FlashSystem A9000
IBM FlashSystem A9000R

The following outbound port is used: 7778.

IBM Cloud Object Storage

The following outbound port is used: 443.
IBM Storage Ceph®

The following outbound port is used: 8443.

Dell EMC Unity

The following outbound port is used: 443.

Other Dell EMC storage systems

5991 listens for events that are coming from Dell EMC CIMOMs. The protocol is set to http by default.

Hitachi VSP storage systems

 The following ports are used:
  • Hitachi VSP storage systems by using Hitachi Command Suite:
    • Hitachi Command Suite: The following outbound port is used: 2443 (default)
    • Hitachi Device Manager: The following outbound port is used: 2443 (default)
  • Hitachi VSP storage systems by using Hitachi Ops Center:
    • Hitachi Ops Center: The following outbound port is used: 443 (default)
    • Hitachi Ops Center Administrator: The following outbound port is used: 20961 (default)
    • Hitachi Ops Center Analyzer: The following outbound port is used: 8443 (default)

NetApp ONTAP 9 storage systems

The following outbound port is used: 22.

Pure storage systems

The following outbound port is used: 443.
Switches: Brocade, Fabric OS 8.2.1 and later The following outbound ports are used:
  • 22 for SSH
  • 80 for HTTP
  • 443 for HTTPS
Switches: Cisco, NX-OS Release 8.4 versions

The following outbound port is used: 8443.
VMware vCenter Server resources:
  • ESXi hosts 6.5 or later
  • Virtual machines on ESXi hosts

The following outbound port is used: 443.