SCOM 2012 R2 Kullanımında Gerekli Port Yapılandırması, Desteklenen Firewall Senaryoları, Network ve Monitorleme Kapasiteleri

Desteklenen Firewall Senaryosu / Supported Firewall Scenarios

SCOM 2012 / R2 Sürümü için desteklenen firewall senaryoları aşağıdaki gibidir.

 Operations Manager Feature A Port number and direction Feature B Configurable Note
Management server 1433 —> Operational database Yes (Setup)
Management server 1434 UDP < — Operational database No If the operational database is installed on a named instance of SQL Server 2008 R2 SP1, SQL Server 2008 R2 SP2, SQL Server 2012, or SQL Server 2012 SP1 such as in a cluster, and the Windows Firewall is enabled on the management server, you have to also open UDP 1434 inbound on the management server.
Management server 5723, 5724 —> Management server No Port 5724 must be open to install this feature and can be closed after this feature has been installed.
Management server 1433 –> Reporting data warehouse No
Reporting server 5723, 5724 —> Management server No Port 5724 must be open to install this feature and can be closed after this feature has been installed.
Operations console 5724 —> Management server No
Connector Framework source 51905 —> Management server No
Web console server Selected web site port —> Management server No
Web console (for Application Diagnostics 1433, 1434 —> Operational database Yes (Setup)
Web console (for Application Advisor) 1433, 1434 —> Data warehouse Yes (Setup)
Web console (for Application Advisor) 80 —> SQL Server Reporting Services No
Web console browser 80, 443 —> web console server Yes (IIS Admin) Default for HTTP or SSL.

For either Network Authentication or Mixed Authentication, an account name and password can be sent as part of the request. We recommend you use SSL.

Agent installed by using MOMAgent.msi 5723 —> Management server Yes (Setup)
Agent installed by using MOMAgent.msi 5723 —> Management server Yes (Setup)
Agent installed by using MOMAgent.msi 5723 —> Gateway server Yes (Setup)
Gateway server 5723 —> Management server Yes (Setup)
Agent (Audit Collection Services (ACS) forwarder) 51909 —> Management server Audit Collection Services (ACS) Collector Yes (Registry)
Agentless Exception Monitoring data from client 51906 —> Management server Agentless Exception Monitoring (AEM) file share Yes (Client Monitoring Wizard)
Customer Experience Improvement Program data from client 51907 —> Management server (Customer Experience Improvement Program) Endpoint Yes (Client Monitoring Wizard)
Operations console (reports) 80 —> SQL Server Reporting Services No The Operations console uses port 80 to connect to the SQL Server Reporting Services website.
Reporting server 1433 —> Reporting data warehouse Yes
Management server (Audit Collection Services Collector) 1433 —> Audit Collection Services (ACS) database Yes
Management Server 161, 162 <—> Network device Yes All firewalls between the management servers in the resource pool and the network devices need to allow SNMP (UDP) and ICMP bi-directionally, and ports 161 and 162 need to be open bi-directionally. This includes Windows Firewall on the management server itself.

If your network devices are using a port other than 161 and 162, you need to open bi-directional UDP traffic on these ports as well.

Management server or gateway server 1270 — > UNIX or Linux computer No
Management server or gateway server 22 — > UNIX or Linux computer Yes

Minimum Network Bağlantı Hızları / Minimum Network Connectivity Speeds

SCOM kullanımında Minimum gereken network bağlantı hızları aşağıdaki gibidir.

Feature A Feature B Minimum requirement
Management server Agent 64 Kbps
Management server Agentless 1024 Kbps
Management server Database 256 Kbps
Management server Console 768 Kbps
Management server Management server 64 Kbps
Management server Data warehouse database 768 Kbps
Management server Reporting server 256 Kbps
Management server Gateway server 64 Kbps
Local management group Connected management group (tiered) 1024 Kbps
Web console server web console 128 Kbps
Reporting Data Warehouse Reporting server 1024 Kbps
Console Reporting server 768 Kbps
Audit collector Audit database 768 Kbps

Izlenebilecek Nesne Kapasitesi / Monitored Item Capacity

SCOM kullanımda Monitor edilebilcek olan nesne kapasitesi aşağıdaki gibidir.

Monitored item Recommended limit
Simultaneous Operations consoles 50
Agent-monitored computers reporting to a management server 3,000
Agent-monitored computers reporting to a gateway server 2,000
Agentless Exception Monitored (AEM)-computers per dedicated management server 25,000
Agentless Exception Monitored (AEM)-computers per management group 100,000
Collective client monitored computers per management server 2,500
Management servers per agent for multihoming 4
Agentless-managed computers per management server 10
Agentless-managed computers per management group 60
Agent-managed and UNIX or Linux computers per management group 6,000 (with 50 open consoles); 15,000 (with 25 open consoles)
UNIX or Linux computers per dedicated management server 500
UNIX or Linux computers monitored per dedicated gateway server 100
Network devices managed by a resource pool with three or more management servers 1,000
Network devices managed by two resource pools 2,000
Agents for Application Performance Monitoring (APM) 700
Applications for Application Performance Monitoring (APM) 400
URLs monitored per dedicated management server 3000
URLs monitored per dedicated management group 12,000
URLs monitored per agent 50

Operations Manager Bileşenleri Firewall Durumları / Operations Manager Feature Firewall Exceptions

SCOM üzerinde bileşenlerin çalışmalarını sağlıyabilmeniz için firewall üzerinde aşağıda belirtdiğim port izinlerini sağlamalısınız.

 

Feature Exception Port and protocol Configured by
Management server
  • System Center Management service
  • System Center Data Access service
  • Operations Manager Connector Framework
  • Operations Manager Customer Experience Improvement
  • Operations Manager Application Error Monitoring
5723/TCP

5724/TCP

51905/TCP

51907/TCP

51906/TCP

Setup

Setup

Setup

Setup

Setup

Web console Operations Manager web console Selected web site port/TCP Setup
Web console, http World Wide Web Services, http 80/TCP Windows Firewall
Web console, https Secure World Wide Web Service, https 443/TCP Windows Firewall
Operational database
  • SQL Server database server
  • If using a named instance, add.
1433/TCP

1434/UDP

Windows Firewall

Windows Firewall

Operations Manager data warehouse database
  • SQL Server database server
  • If using a named instance, add.
1433/TCP

1434/UDP

Windows Firewall

Windows Firewall

Operations Manager Reporting SQL Server Reporting Services 80/TCP Windows Firewall
Agent, manual installation of MOMAgent.msi System Center Management service 5723/TCP Windows Firewall
Agent, push installation
  • System Center Management service
  • File and Print Sharing
  • Remote Administration
5723/TCP

137/UDP, 138/UDP, 139/TCP, 445/TCP

135/TCP, 445/TCP

Windows Firewall

Windows Firewall

Windows Firewall

Agent, pending repair
  • System Center Management service
  • File and Print Sharing
  • Remote Administration
5723/TCP

137/UPD, 138/UPD, 139/TCP, 445/TCP

135/TCP, 445/TCP

Windows Firewall

Windows Firewall

Windows Firewall

Agent, pending upgrade
  • System Center Management service
  • File and Print Sharing
  • Remote Administration
5723/TCP

137/UDP, 138/UDP, 139/TCP, 445/TCP

135/TCP, 445/TCP

Windows Firewall

Windows Firewall

Windows Firewall

Gateway System Center Management service 5723/TCP Setup
Operations Manager Audit Collection Services database
  • SQL Server
  • If using a named instance, add.
1433/TCP

1434/UDP

Windows Firewall

Windows Firewall

Operations Manager Audit Collection Services Collector ACS Collector Service 51909/TCP Windows Firewall

Burada bulunan gereksinimler Microsoft tarafından önerilen ve yapılandırmanın bu tabloya göre yapılması önerilmiştir.

Twitter Auto Publish Powered By : XYZScripts.com