2.1.6 Notes on network configurations
- Organization of this subsection
(1) TCP/UDP port numbers used by JP1/DH - Server
JP1/DH - Server uses the TCP/UDP port numbers listed below. Management software and other software programs that are installed on the JP1/DH - Server machine must be configured not to use these port numbers.
|
Port number |
Description |
|---|---|
|
80 |
Port on which the server listens for HTTP requests |
|
443 |
Port on which the server listens for HTTPS requests |
|
900 |
Port on which the server listens for naming-service requests |
|
5432 |
Port to communicate with the database |
|
8080 |
Communication port for management |
|
8007 |
Port on which the server listens for requests from the redirector |
|
14000 |
Communication port for smart agents |
|
20302 |
Communication port for processing transaction recovery |
|
20351 |
Port on which the server listens for events from the shared queue function |
|
23152 |
Port on which the server listens for RMI registry requests |
|
20295 |
Communication port for operations management agents |
(2) Firewall or proxy setup
A client machine must be able to communicate with JP1/DH - Server by using HTTPS (TCP port 443). The port number is fixed to 443 and cannot be changed.
In addition, a content firewall, proxy, or any other program must not limit the number of concurrent HTTPS connections in order to use high-speed transfers through the multiplexing of JP1/DH - Server.
(3) "hosts" file on the reverse proxy server machine
A host name (computer name) or FQDN that is associated with the global IP address of the reverse proxy server is sometimes defined in the hosts file on the proxy server machine. In this case, the following JP1/DH - Server functions have limitations:
-
Audit log
The audit log records IP addresses of client machines accessed to the server. In the environment mentioned above, however, the global IP address of the reverse proxy server machine will be recorded as a client IP address.
-
Access control with the network set function
The network set function, which limits access based on IP addresses of client machines accessed to the server, does not work properly in the above environment.
(4) Number of characters of the authentication ID and password for the proxy server
If a web browser on a client machine accesses the JP1/DH - Server machine via a proxy server, you can specify a maximum of 57 characters for the authentication ID and password for the proxy server.