Académique Documents
Professionnel Documents
Culture Documents
June, 2013
Overview
Introduction
This document provides an overview of ports that are used by Citrix components and must be
considered as part of Virtual Computing architecture, especially if communication traffic traverses
network components such as firewalls or proxy servers, where ports must be opened to ensure
communication flow.
References
The assignments are listed by the Internet Assigned Numbers Authority (IANA), updated regularly,
and revised when new information is available and new assignments are made. The specific location
of the port numbers list is available at the following Web site:
http://www.iana.org/assignments/port-numbers.
Microsoft Article Network Ports Used by Key Microsoft Server Products.
Microsoft Article ID 832017 Service overview and network port requirements for the Windows
Server system.
Page
Ports by Product
Component
Type
Port
Details
Client Connections
TCP
443
TCP
80/443/9002
Appliance
TCP
443
Administration Website
Controller
TCP
2513
IMA-based communication
TCP
389
LDAP connection
Administration
Authentication
LDAP
RADIUS
TCP/UDP
1812
RADIUS connection
TCP/UDP
53
TCP
694
Client Connections
TCP
443
TCP
80/443
TCP
9001
Administration Website
TCP
9002
TCP
9005
AAC
TCP
2513
IMA-based communication
TCP
389
LDAP connection
TCP/UDP
1812
RADIUS connection
TCP/UDP
53
SSH
TCP
22
HTTPS
TCP
4443
GUI Administration
TCP/UDP
389
LDAP Connection
TCP/UDP
636
TCP
3268
TCP
3269
DNS
Appliance Failover
Administration
Appliance
AAC
Authentication
LDAP
RADIUS
DNS
AppController 2.x and later
Administration
Authentication
LDAP
Page
Component
Type
Port
Details
TCP
443
DNS
TCP/UDP
53
SMTP
TCP
25
High Availability
TCP
9736
Syslog
UDP
514
TCP
3820
TCP
21
Administration
TCP
80/443
TCP
3389
Appliance to Appliance
TCP
N/A
Client to Appliance
TCP
443
TCP
27000
TCP
7279
TCP
8082
Licensing Configuration
Service
TCP
80
GoToMeeting
GoToWebinar
GoToMyPC
GoToAssist
CloudStack/CloudPlatform
TCP
80/443/8200
CloudStack Management
Server
TCP
9090 + 8250
Client Connections
HTTPS
Reporting/Monitoring
Branch Repeater
Citrix Repeater Console
(bi-directional)
User/Client/API
TCP
8080
User/Client
TCP
8096
vCenter
TCP
443
KVM
TCP
22
XenServer
TCP
22/80/443
MySQL
TCP
3306
DNS
TCP
53
Secondary Storage
TCP
3922
Page
Component
Virtual Machine (SSVM)
Console Proxy VM
Virtual Router
NFS
Type
Port
Details
TCP
8250
TCP
80/443
TCP
111/2049
SSVM to NFS
TCP
53
SSVM to DNS
TCP
3922
TCP
8250
TCP
53
TCP
3922
TCP
8250
TCP
53
TCP
111/2049
TCP
80/443
ICA / HDX
TCP
1494
Session Reliability
TCP
2598
IMA
TCP
2512
Management Console
TCP
2513
TCP
80/8080/443
XML Service
STA
TCP
80/8080/443
*Note:
EasyCall
EasyCall Client
TCP
8443
PSync
EasyCall Gateway
TCP
5060
Admin Console
TCP
443
Administration of EasyCall
LDAP
TCP
389
Active Directory/LDAP
PBX
TCP
N/A
TCP
80/443
TCP
9036
Web Console
TCP
9035
Database
TCP
1433
EdgeSight
Agent
Page
Component
Type
Port
Details
TCP
8443
End-Device to Virtual
Machines
TCP
3389
TCP
5900
End-Device to Virtualization
Host
TCP
5900
5999
2179
TCP/UDP
35110 35112
TCP
8443
TCP
389
LDAP
Lab Manager
TCP
VMAgent to Lab Manager
Server
TCP
22
HTTP/S
TCP
80/443
Java
TCP
3008
TCP
3010
TCP/UDP
389
LDAP connection
TCP/UDP
636
TCP
3268
TCP/UDP
1812
RADIUS connection
TCP/UDP
53
UDP
3003
TCP
3008
TCP
3009
TCP
3010
TCP
3011
TCP
9091/9092/
9094
TCP
9091/9092
TCP
9094
GUI Administration
Authentication
LDAP
RADIUS
DNS
High Availability
Command Center
Page
Component
Type
Port
Details
Used when you execute the Invoke NSCLI option.
TCP
1099/6010
Under Device, right click under Map Between
Command Center Server and NetScaler. The ping is
the SNMP ping.
Connect SSH/SFTP to the NetScaler device from
TCP
22
Command Center Server
SNMP Polling to NetScalers and TRAPs from
UDP
161/162
NetScaler to Command Center
Note: If you use an HTML client, then only 8443 port needs to be open between client and Command Center server.
Citrix recommends using an HTML client as much as possible.
IPSec Encapsulating Security Protocol (ESP) traffic
Cloud Bridge
TCP
50
TCP
51
UDP
500
TCP
443
TCP/UDP
445
CIFS
TCP/UDP
135 - 139
TCP/UDP
389
LDAP connection
TCP/UDP
636
TCP
3268
TCP
3269
TCP/UDP
524
ZENworks communication
Broadcast
UDP
67
UDP
68
TFTP
UDP
69
EDP
6969
Console
TCP
54321
54322
SOAP Service
NetBIOS
Provisioning Services
PXE
DHCP
Active Directory
TCP
389
Database
TCP
1433
Target Devices
UDP
6901
Target Devices
UDP
6901, 6902,
6905
Streaming Services
UDP
6910 6930
Server Communication
UDP
6890 6909
UDP
6905 6909
Page
Component
Type
Port
Details
Boot Login
UDP
6910
Write Cache
UDP
10802
10803
Note:
SmartAuditor
Components (Agent / Player)
Database
TCP/UDP
80/443
TCP
1433
TCP/UDP
1801
MSMQ
TCP
2101
MSMQ-DCs
TCP
2103
MSMQ-RPC
TCP
2105
MSMQ-RPC
TCP
2107
MSMQ-Mgmt
UDP
3527
MSMQ-Ping
TCP
135
RPC
TCP
80/443
End-Device to StageManager
Server User Interface
TCP
9443
End-Device to Virtual
Machines
TCP
3389
TCP
5900
End-Device to Virtualization
Host
TCP
5900 5999
TCP
2179
TCP/UDP
35110 35112
TCP
9443
TCP
389
LDAP
TCP
636
StorageLink Service
TCP
21605
Database
TCP
1433
Secured connections
StageManager
VMAgent to StageManager
Server
StorageLink
StoreFront
Application/Desktop Request
Page
Component
Type
Port
Details
HTTP/S
TCP
80/443
SSL Relay
TCP
443
LDAP
TCP/UDP
389
Kerberos
TCP/UDP
88
Kpasswd
TCP/UDP
464
HTTP/S
TCP
80/443
SQL Connection
TCP
1433
Peer-to-peer Services
(Credential Wallet,
Subscriptions Store (1 per
Store)
TCP
Randomly
selected
unreserved
port
per service
Subscription Replication
Services
TCP
808
Console
TCP
8010
Database
TCP
1433
SMB
445
HTTP/S
80/443
TCP
11168
Database
TCP
1433
TCP
1434
XML Service
Authentication
Client Connections
TCP port used to connecting to the store or
Receiver for Web site hosted on StoreFront
Workflow Studio
XenApp
Offline Plug-in
XenClient
XenClient Synchronizer
Page
Component
Type
Port
Details
Enterprise Engine
TCP
443
Administration
TCP
8443
Hyper-V Management
RDP
2179
SQL
TCP
1433
LDAP
TCP
389
LDAP /S
TCP
636
TCP
443
Citrix XenServer
TCP
80/443
Microsoft Hyper-V
TCP
8100
VMware vSphere
TCP
443
Broker
TCP
80/443
TCP
80
Used by Citrix.ADIdentity.SdkWcfEndpoint.exe
Configuration Service
TCP
80
Used by Citrix.Configuration.SdkWcfEndpoint.exe
Host Service
TCP
80
Used by Citrix.Host.SdkWcfEndpoint.exe
TCP
80
Used by
Citrix.MachineCreation.SdkWcfEndpoint.exe
TCP
80
Used by
Citrix.MachineIdentity.SdkWcfEndpoint.exe
TCP
80
Used by
Citrix.LicensingConfig.SdkWcfEndpoint.exe
Desktop Director
TCP
80/443
TCP
80
TCP
3268
XenClient Engine
Enterprise Engine
XenDesktop
Virtualization Infrastructure
Communication with XenServer infrastructure
Page 10
Component
Type
Port
Details
TCP
135
3389
TCP/UDP
49152-65535
UDP
16500
16509
TCP
80
TCP
5985
TCP
8080
TCP
80
Database
TCP
1433
TCP
1434
TCP
22
SSH
TCP
443
TCP
5900
TCP
3389
TCP
22
SSH
TCP
443
TCP/UDP
123
NTP
TCP/UDP
53
DNS
TCP
389
Active Directory
TCP/UDP
139
TCP/UDP
445
TCP
3260
iSCSI Storage
TCP
2049
NFS Storage
TCP
21605
TCP
636
XenServer
XenCenter
Resource Pool
Infrastructure
Storage
Page 11
By Port
Port
22
Product
CloudStack/CloudPlatform
Component
Type
Details
KVM
TCP
XenServer
TCP
Command Center
TCP
SSH administration
TCP
Resource Pool
TCP
SSH
22
22
XenServer
XenCenter
TCP
SSH
22
AppController 2.0
Administration
TCP
25
AppController
SMTP
TCP
43
SmartAuditor
TCP
50
Cloud Bridge
TCP
Cloud Bridge
TCP
Secured connections
IPSec Encapsulating Security
Protocol (ESP) traffic
IPSec Authentication Header (AH)
traffic
53
DNS
TCP/UDP
53
AppController 2.0
TCP/UDP
53
CloudStack/CloudPlatform
DNS
Console Proxy VM
51
TCP
DNS
TCP
SSVM
TCP
SSVM to DNS
Virtual Router
TCP
DNS
TCP/UDP
DNS
TCP/UDP
53
Infrastructure
TCP/UDP
DNS
67
Provisioning services
DHCP
UDP
68
Provisioning services
DHCP
UDP
69
Provisioning services
TFTP
UDP
80
TCP
80
Branch Repeater
Administration
TCP
80
GoToMeeting
GoToWebinar
GoToMyPC
GoToAssist
TCP
53
53
Page 12
By Port
Port
80
80
Product
CloudStack
Common Citrix
Communication Ports
Component
SSVM
Type
Details
TCP
XenServer
TCP
Application / Desktop
Request
TCP
XML Service
Citrix Receiver
TCP
STA
TCP
80
EdgeSight
Agent
TCP
80
HTTP/S administration
TCP
GUI Administration
80
TCP
80
SmartAuditor
Components (Agent /
Player)
TCP/UDP
SmartAuditor components
connecting to SmartAuditor Broker
Components (Agent /
Player)
TCP/UDP
SmartAuditor components
connecting to SmartAuditor Broker
TCP
Secured connections
80
StoreFront
Application/Desktop Req.
TCP
80
XenApp
Offline Plug-in
80
XenDesktop
TCP
Used by
Citrix.ADIdentity.SdkWcfEndpoint.e
xe
Broker
TCP
TCP
Used by process
WorkstationAgent.exe for
communicating with Broker
Citrix XenServer
Virtualization
Infrastructure
TCP
Configuration Service
TCP
Used by
Citrix.Configuration.SdkWcfEndpoin
t.exe
Desktop Director
TCP
Host Service
TCP
HTTP/S
Used by
Citrix.Host.SdkWcfEndpoint.exe
Page 13
By Port
Port
Product
Component
Type
Details
License Configuration
Service
TCP
Used by
Citrix.LicensingConfig.SdkWcfEndp
oint.exe
TCP
Used by
Citrix.MachineCreation.SdkWcfEndp
oint.exe
TCP
Used by
Citrix.MachineIdentity.SdkWcfEndp
oint.exe
TCP
TCP
88
StoreFront
Kerberos
111
CloudStack/CloudPlatform
NFS
TCP
SSVM
TCP
SSVM to NFS
123
XenServer
135
TCP/UDP
TCP/UDP
NTP
SmartAuditor
Infrastructure
MSMQ Service (default)
TCP
RPC
135
XenDesktop
TCP
135 - 139
Password Manager
139
XenServer
Credential Store on
Network File Share
Infrastructure
161
Command Center
UDP
162
Command Center
UDP
389
AppController
Authentication
TCP
389
StoreFront
Authentication
TCP/UDP
LDAP connection
389
LDAP authentication
TCP
LDAP connection
389
EasyCall
LDAP
TCP
Active Directory/LDAP
389
Lab Manager
TCP
LDAP
389
LDAP authentication
TCP/UDP
TCP/UDP
NetBIOS
TCP/UDP
LDAP connection
Page 14
By Port
Port
Product
NetScaler / Access Gateway
Enterprise Edition
AppController
Component
389
389
StageManager
389
443
389
389
389
Type
Details
LDAP authentication
TCP/UDP
LDAP connection
LDAP authentication
TCP/UDP
LDAP connection
LDAP authentication
TCP
LDAP connection
Active Directory
TCP
TCP
LDAP
XenServer
StageManager Server to
Active Directory
Infrastructure
TCP
Active Directory
Appliance administration
TCP
Administration Website
TCP
Client Connections
TCP
443
AppController 2.0
Client Connections
TCP
Connect to AppController
443
StoreFront
Application/Desktop Req.
TCP
443
Branch Repeater
Administration
TCP
Client to Appliance
TCP
GoToMeeting
GoToWebinar
GoToMyPC
GoToAssist
SSVM
TCP
TCP
vCenter
TCP
XenServer
TCP
Application / Desktop
Request
TCP
XML Service
Citrix Receiver
TCP
STA
TCP
443
443
CloudStack
443
Common Citrix
Communication Ports
443
EasyCall
Admin Console
TCP
Administration of EasyCall
443
EdgeSight
Agent
TCP
443
HTTP/S administration
TCP
GUI Administration
Page 15
By Port
Port
443
443
Product
Password Manager
Component
Type
Details
TCP
TCP
Client Connections
TCP
443
XenApp
Offline Plug-in
443
XenDesktop
Broker
TCP
Citrix XenServer
Virtualization
Infrastructure
TCP
Desktop Director
TCP
VMware vSphere
Virtualization
Infrastructure
TCP
Resource Pool
TCP
XenCenter
TCP
443
XenServer
HTTP/S
443
XenClient
Enterprise Engine
TCP
445
Password Manager
Credential Store on
Network File Share
TCP/UDP
445
XenApp
Offline Plug-in
SMB
445
XenServer
Infrastructure
TCP/UDP
464
StoreFront
Kpasswd
TCP/UDP
500
Cloud Bridge
524
Password Manager
636
Lab Manager
636
636
636
StageManager
636
AppController 2.0
CIFS
Communication with Application
Hub (File Server / Share)
UDP
TCP/UDP
ZENworks communication
TCP
LDAP authentication
TCP/UDP
TCP/UDP
Authentication
TCP
TCP
Page 16
By Port
Port
694
Product
Access Gateway 5.0
Component
Type
Details
Appliance Failover
TCP
1099
Command Center
TCP
1433
EdgeSight
Database
TCP
1433
Provisioning services
Database
TCP
1433
SmartAuditor
Database
TCP
1433
StorageLink
Database
TCP
1433
StoreFront
SQL Connection
TCP
1433
Workflow Studio
Database
TCP
1433
XenApp
Database
TCP
1433
XenDesktop
Database
TCP
1434
XenApp
Database
TCP
1434
XenDesktop
Database
TCP
1494
Common Citrix
Communication Ports
ICA / HDX
TCP
1801
SmartAuditor
TCP/UDP
MSMQ
1812
RADIUS authentication
TCP/UDP
RADIUS connection
1812
RADIUS authentication
TCP/UDP
RADIUS connection
RADIUS authentication
TCP/UDP
RADIUS connection
2049
NFS
TCP
2049
CloudStack/CloudPlatform
SSVM
TCP
SSVM to NFS
2049
XenServer
NFS Storage
SmartAuditor
Storage
MSMQ Service (default)
TCP
2101
TCP
MSMQ-DCs
2103
SmartAuditor
TCP
MSMQ-RPC
2105
SmartAuditor
TCP
MSMQ-RPC
2107
SmartAuditor
TCP
MSMQ-Mgmt
2179
Lab Manager
End-Device to
Virtualization Host
TCP
1812
Page 17
By Port
Port
2179
Product
StageManager
2179
XenClient
Hyper-V
TCP
2512
Common Citrix
Communication Ports
IMA
TCP
Independent Management
Architecture (IMA)
2513
Controller administration
TCP
IMA-based communication
2513
Common Citrix
Communication Ports
Previous versions of Access
Gateway Standard /
Advanced Edition
Common Citrix
Communication Ports
Management Console
TCP
AAC administration
TCP
IMA-based communication
Session Reliability
TCP
3003
High Availability
UDP
3008
High Availability
TCP
Java administration
TCP
2513
2598
3008
Component
Type
Details
End-Device to
Virtualization Host
TCP
3009
High Availability
TCP
3010
High Availability
TCP
Java administration
TCP
3011
High Availability
TCP
Storage
TCP
iSCSI Storage
LDAP authentication
TCP
3268
TCP
3268
Password Manager
TCP
3268
AppController
Authentication
Credential Store on Active
Directory
LDAP Authentication
TCP
3268
XenDesktop 5.x
VDA Agent
TCP
3269
AppController
LDAP Authentication
TCP
3269
AppControler
TCP
3269
Password Manager
Authentication
Credential Store on Active
Directory
TCP
3306
CloudStack/CloudPlatform
MySQL
TCP
3260
3268
Page 18
By Port
Port
3389
Product
Branch Repeater
Component
Type
Details
Administration
TCP
3389
Lab Manager
End-Device to Virtual
Machines
TCP
3389
StageManager
TCP
3389
XenDesktop
End-Device to Virtual
Machines
Virtual Desktop Agent 5
TCP
3389
XenServer
TCP
3527
SmartAuditor
XenCenter
MSMQ Service (default)
UDP
MSMQ-Ping
3922
CloudStack/CloudPlatform
Console Proxy VM
TCP
SSVM
TCP
Virtual Router
TCP
4443
AppController
Administration
TCP
GUI Administration
5060
EasyCall
EasyCall Gateway
TCP
5900
Lab Manager
End-Device to Virtual
Machines
TCP
5900
StageManager
End-Device to Virtual
Machines
TCP
5900
XenServer
XenCenter
TCP
5900 - 5999
Lab Manager
End-Device to
Virtualization Host
TCP
5900 - 5999
StageManager
TCP
5985
XenDesktop
End-Device to
Virtualization Host
Virtual Desktop Agent 5
TCP
6010
Command Center
TCP
6890 6904
Provisioning Services
Server Communication
UDP
6901
Provisioning Services
Target Devices
UDP
6901, 6902
6905
Provisioning Services
Target Devices
UDP
Page 19
By Port
Port
Component
Type
Details
6905 - 6909
Product
Provisioning Services
Server Communication
UDP
6910
Provisioning Services
Boot Login
UDP
6910 6930
Provisioning Services
Streaming Services
UDP
7279
TCP
8010
Workflow Studio
Console
TCP
8080
CloudStack/CloudPlatform
User/Client/API
TCP
User/Client/API to CloudStack
Management Server - Management
Port (authenticated communication)
8080
Common Citrix
Communication Ports
Application / Desktop
Request
TCP
XML Service
STA
TCP
8080
XenDesktop
TCP
8082
License Management
Console
TCP
8096
CloudStack/CloudPlatfrom
User/Client
TCP
User/Client to CloudStack
Management Server - Management
Port (unauthenticated
communication)
8100
XenDesktop
Microsoft Hyper-V
Virtualization
Infrastructure
TCP
8200
GoToMeeting
GoToWebinar
GoToMyPC
GoToAssist
TCP
8250
CloudStack/CloudPlatform
CloudStack Management
Server
Console Proxy VM
TCP
TCP
SSVM
TCP
Virtual Router
TCP
8443
EasyCall
EasyCall Client
TCP
PSync
8443
XenClient
Administrator
TCP
Page 20
By Port
Port
8443
9001
9002
Product
Lab Manager
Component
Type
Details
End-Device to Lab
Manager Server User
Interface
TCP
TCP
Appliance administration
TCP
Administration Website
TCP
Appliance administration
TCP
Appliance administration
TCP
AAC
9035
Web Console
TCP
9036
EdgeSight
Agent
TCP
9090
CloudStack/CloudPlatform
9091
CloudStack Management
Server
Command Center
9002
9005
9092
9094
9094
9443
10802
TCP
TCP
Command Center
TCP
Command Center
TCP
Command Center
TCP
Command Center
TCP
Command Center
TCP
StageManager
End-Device to
StageManager Server User
Interface
TCP
VMAgent to StageManager
Server
TCP
Write Cache
UDP
Provisioning services
Page 21
By Port
Port
10803
Product
Provisioning services
Component
Type
Details
Write Cache
UDP
11168
XenApp
16500
XenDesktop
TCP
UDP
16509
XenDesktop
UDP
21605
StorageLink
StorageLink Service
TCP
Communication of StorageLink
Manager to StorageLink Service
21605
XenServer
Storage
TCP
27000
TCP
35110 - 35112
Lab Manager
TCP/UDP
35110 - 35112
StageManager
VMAgent to StageManager
Server
TCP/UDP
54321
Provisioning services
Console
TCP
SOAP Service
54322
Provisioning services
Console
TCP
SOAP Service
Page 22
Revision
Change Description
Updated By
Date
2.2
Steve Weizman
Stehanie Roper,
June 2013
2.1
Fred Donovan
December, 2012
2.0
Fred Donovan,
John Scoles
February, 2012
1.9
Fred Donovan
January, 2012
1.8
Added CloudStack
John Scoles
1.7
Steve Weizman
1.6
John Scoles
1.5
Tarkan Koolu
1.4
John Scoles
November, 2010
1.3
Update
Tarkan Koolu
November, 2010
1.2
Update
John Scoles
November, 2010
1.1
Update
John Scoles
June, 2010
1.0
Initial document
Michael Palesch
Thomas Berger
Tarkan Koolu
November, 2011
October, 2011
September, 2011
July, 2011
Page 23