Port |
Default |
Description |
Traffic direction |
Agent-server communication port |
80 |
TCP port that the ePO server service uses to receive requests from agents. |
Inbound connection to the Agent Handler and the ePO server from the McAfee Agent. Inbound connection to the ePO server from the Remote Agent Handler. |
File sharing and server message block (SMB) |
135 |
Port 135 needs to be open to deploy the McAfee Agent from the System Tree.
The following ports are associated with file sharing and server message block (SMB) communications:
- Microsoft file sharing SMB:
- User Datagram Protocol (UDP)
- Ports from 135 through 139.
- Transmission Control Protocol (TCP) ports from 135 through 139.
- Direct-hosted SMB traffic without a network basic input/output system (NetBIOS): port 445 (TCP and UPD).
For additional details, see this Microsoft Article. |
Outbound |
Agent-server communication secure port
Software Manager, Product Compatibility List, and License Manager port |
443 |
TCP port that the ePO server service uses to receive requests from agents and Remote Agent Handlers.
TCP port that the ePO server's Software Manager uses to connect to McAfee.
TCP port that the ePO server uses to connect to the McAfee software updates server (s-download.mcafee.com), McAfee license server (lc.mcafee.com), and McAfee Product Compatibility List (epo.mcafee.com). |
Inbound connection to the Agent Handler and the ePO server from the McAfee Agent. Inbound connection to the ePO server from the Remote Agent Handler.
Outbound connection from the ePO server to McAfee servers. |
Agent wake-up communication port
SuperAgent repository port |
8081 |
TCP port that agents use to receive agent wake-up requests from the ePO server or Agent Handler.
TCP port that the SuperAgents configured as repositories that are used to receive content from the ePO server during repository replication, and to serve content to client systems. |
Inbound connection from the ePO server or Agent Handler to the McAfee Agent.
Inbound connection from client systems to SuperAgents configured as repositories. |
Agent broadcast communication port |
8082 |
UDP port that the SuperAgents use to forward messages from the ePO server/Agent Handler. |
Outbound connection from the SuperAgents to other McAfee Agent. |
Console-to-application server communication port |
8443 |
TCP port that the ePO Application Server service uses to allow web browser UI access. |
Inbound connection to the ePO server from the ePO console. |
Client-to-server authenticated communication port |
8444 |
TCP Port that the Agent Handler uses to communicate with the ePO server to get obtain information (such as LDAP servers). |
Outbound connection from Remote Agent Handlers to the ePO server. |
SQL Server TCP port |
1433 |
TCP port used to communicate with the SQL Server. This port is specified or determined automatically during the setup process. |
Outbound connection from the ePO server or Agent Handler to the SQL Server. |
SQL Server UDP port |
1434 |
UDP port used to request the TCP port that the SQL instance hosting the ePO database is using. |
Outbound connection from the ePO server or Agent Handler to the SQL Server. |
LDAP server port |
389 |
TCP port used to retrieve LDAP information from Active Directory servers. |
Outbound connection from the ePO server or Agent Handler to an LDAP server. |
SSL LDAP server port |
636 |
TCP port used to retrieve LDAP information from Active Directory servers. |
Outbound connection from the ePO server or Agent Handler to an LDAP server. |
LDAP with Global Catalog |
3268 |
TCP port used to retrieve LDAP information from Active Directory servers when using Global Catalog. |
Outbound connection from the ePO server or Agent Handler to an LDAP server. |
SSL LDAP with Global Catalog |
3269 |
TCP port used to retrieve LDAP information from Active Directory servers when using Global Catalog and SSL. |
Outbound connection from the ePO server, or Agent Handler to an LDAP server. |
SMB Windows domain controller port |
445 |
TCP port used for ePO console logon when authenticating Active Directory users. |
Outbound connection from the ePO server to the domain controller (Active Directory) server. |
Syslog server port (optional) |
6514 |
Default port for Syslog using TLS: only needed if syslog forwarding is configured. |
Outbound from the ePO server or Agent Handlers to registered syslog server. |