E.2 Firewall passage directions
If there is a firewall between PFM - Manager and PFM - Agent for Enterprise Applications, you must set fixed port numbers for all services of PFM - Manager and the PFM - Agent. Set the port numbers so that communications can pass through the firewall for all services.
For details, see the description about the directions in which data passes through a firewall in the manual JP1/Performance Management Reference.
To use the remote monitoring function, you have to set up the port number of the SAP system to be monitored in a way that allows it to pass through the firewall.
![[Figure]](GRAPHICS/ZUM02008.GIF)
|
Service name |
Port number |
Direction of communication#1#2 |
Supported firewalls |
|---|---|---|---|
|
sapgwnn #3 |
33nn #3/tcp |
PFM - Agent for Enterprise Applications |
Packet filtering type, and NAT (static mode) type address conversion |
|
Any (Default: sapdp99)#4 |
Any/tcp (Default: 3299/tcp) |
PFM - Agent for Enterprise Applications |
Packet filtering type, and NAT (static mode) type address conversion |
- Legend:
-
![[Figure]](GRAPHICS/ZUENG017.GIF)
: The direction in which communication (connection) begins
- #1
-
After communication (connection) begins, sending and receiving are performed on the established session. Specify the settings so that a reception to the established session can also penetrate a firewall.
- #2
-
When communication (connection) begins, the connection-source host uses a free port number assigned by the OS as the receiving port. Therefore, specify the settings so that any port number can penetrate a firewall as the receiving port.
- #3
-
nn denotes the system number representing the SAP system at the connection destination.
- #4
-
If you are using the SAProuter to connect to the SAP system at the connection destination, specify the port number to be used by the SAProuter.