Inbound Ports
TCP ports and services that listen for external connections:
| Inbound Port | Protocol | Service Name | Description of Service | Encrypted | Defaults |
|---|---|---|---|---|---|
| 80/443 | TCP | HTTP/HTTPS | Web interface REST API WebSockets API | Optional | Open |
| 22 | TCP | SSH/SFTP | Secure Shell Secure FTP ZFS Replication Rsync over SSH | Yes | Closed |
| 111/2049 | TCP/UDP | NFS v3 | Network File Service | No | Closed |
| 137/138/139/445 | TCP/UDP | SMB | Windows File Service | Optional | Closed |
| 548 | TCP | AFP | Apple File Service | No | Closed |
| 20/21 | TCP | FTP | File Transfer Protocol | No | Closed |
| 443 | TCP | WebDAV | HTTPS access to files | Yes | Closed |
| 3260 | TCP | iSCSI | Block storage over IP | Optional | Closed |
| 9000 | TCP | S3 API | Object storage over IP | Yes | Closed |
| 837 | TCP | Rsync | Remote synchronization | Optional | Closed |
| Not defined | UDP | Wireguard | Point-to-point encryption | Yes | Closed |
| 161/162 | TCP | SNMP | Simple Network Monitoring | Optional | Closed |
Outbound Ports
Protocols that are “outbound” do not listen for or accept external connections. These protocols and ports are not a security risk and are usually allowed through firewalls. These protocols are considered “primary” and might need to be permitted through a firewall:
| Outbound Port | Protocol | Service Name | Description of Service | Encrypted | Defaults |
|---|---|---|---|---|---|
| 80/443 | TCP | HTTP/HTTPS | Software updates and Pro-active support | Optional | Open |
| 25/465 | TCP | Sendmail/TLS | Send emails for alerts | No | Outgoing |
| 123 | TCP | NTP | Network Time synchronization | Yes | Outgoing |
| 514 | TCP | Syslog | Logging of alerts and changes | No | Outgoing |
© iXsystems, Inc. 2021 All rights reserved.