- Knowledge base
- On-premise platform deployment
- Get started
-
Security updates
-
Product news
-
Next-Gen Vulnerability Management
-
Getting started
-
General
-
Operating status
-
Network & System Security
-
Web Application Security
-
Cloud Security
-
API Security
-
Phishing Simulation & Awareness Training
-
Attack Surface Management
-
Scanner Appliance
-
Device Agent
-
On-premise platform deployment
-
Asset management
-
Vulnerability manager
-
Reports
-
Digest reports
-
Organizer
-
Continuous monitoring
-
Integrations
-
Platform API
-
Remediation
-
Users
-
PCI DSS
-
Terms & conditions
-
Dashboard
What are the network configuration requirements?
Public network access
Communication outbound is required for the instance to function properly on different TCP ports. This is necessary for daily updates of new vulnerability tests, participating in software updates provided by Holm Security, and ensuring the system's health state.
The system only requires outbound access to these public endpoints (e.g., no inbound access is required). If your on-premise technical use case differs, please contact your respective Holm Security's Technical Sales or Customer Success Manager.
Outbound IP network access to Holm Security endpoints:
- IPv4: 185.163.84.0/22
- IPv6: 2a0b:6800::/29
- Ports:
- TCP 443
- TCP 8022
Outbound network access for 3rd party services
All service endpoints below are configurable but are required for the system to work properly
- NTP: UDP 123
- DNS: TCP/UDP 53
Service & port definitions
Information about each port and service that is related to the running system.
Depending on where your system's end users are and where you place scanner appliances in your network, you might need to open up access to these ports.
|
Service: |
Source session Initiator: |
Destination/service device: |
Ports: |
Application protocol: |
Notes: |
|
Security Center |
End User/ client device |
Core System |
443/TCP |
HTTPS |
Web-based, Main product. Accessed by anyone involved with the product. |
|
Security Center |
End-user/ client device |
Core System |
8004/TCP |
HTTPS |
Security Center |
|
Web Admin |
Administrative user/ client device |
Core System |
8001/TCP |
HTTPS |
Web-based Admin interface for core settings of OnPrem system |
|
Organizer |
Administrative user / client device |
Core System |
8002/TCP |
HTTPS |
Web-based, Multi-tenant portal. (Access can be restricted after initial configuration). |
|
Platform API |
End-user/ client device OR 3rd party system
|
Core System |
8005/TCP |
HTTPS |
Security Center REST API. The API of the product. |
|
Back Office |
Administrative / Client side (Holm Security Engineers)
|
Core System
|
8003/TCP |
HTTPS |
Internal to Holm Security staff for troubleshooting. (web-based) |
|
Scanner Appliance API |
Scanner Appliance
|
Core System
|
8004/TCP |
HTTPS |
Internal for Scanner Appliance |
|
Feed updates |
Scanner Appliance |
Core System |
8007/TCP |
HTTPS |
Signature delivery and Scanner Appliance updates |
|
APT |
Scanner Appliance |
Core System |
8044/TCP |
HTTP |
Signed OS package updates for Scanner Appliance |