Recently we deployed a server in DMZ which will function as an Agent Handler and a DXL Broker.
I thought 443 is the port Agent Handler (in DMZ) supposed to used, but we are in seeing (in firewall logs) port 8081 from Agent Handler going out to various system, any idea how we can stop that?
Hello @Sohel :
Port 8081 is used for Wake-up Agent call, Whenever there is a Wake-up Agent initiated you would see the machine would communicate to ePO \ Agent Handler server using this port.
It is not recommended to block this, rather you could find the task scheduled for Wake-up Agent and disable it.
Hello @Sohel ,
Adding to previous comment all the communication initiated from the client machine to the Agent handler are performed using port 443 (secure port).
The requests initiated from Agent handler to communication does occur through port 8081.
If you have any other application utilizing the port and if you prefer to modify this value to avoid conflict you can certainly achieve that from ePO Menu > configuration > Server settings > Ports and edit the field "Agent wake-up communication port" to any other allowed port from all agent handlers to client machine.
Please, share a Kudos if you find my response helpful, don't miss to share "Accept as Solution" if my response answers your query!
The agent handler does use port 8081 - it sends wakeup calls also to clients the same as epo does. You can block port 8081 on the firewall, but be aware that wakeups will be blocked, and that includes run client task now as well as clients trying to use superagent repositories. Updates happen on 8081 also when a client is using a superagent distributed repository.
Was my reply helpful?
If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?