Network Port Description⚓︎
1 Network Port List⚓︎
- JumpServer, as a professional operation and maintenance security audit system conforming to 4A standards, requires opening the following network ports for normal operation. Administrators can open relevant ports on the network and host sides according to the actual deployment scheme of JumpServer components in their environment.
| Port | Function | Description |
|---|---|---|
| 22 | SSH | Installation, upgrade, and management |
| 80 | Web HTTP Service | Access JumpServer frontend page via HTTP protocol |
| 443 | Web HTTPS Service | Access JumpServer frontend page via HTTPS protocol |
| 3306 | Database Service | MySQL service |
| 6379 | Database Service | Redis service |
| 3389 | Razor Service Port | RDP Client method to connect to Windows assets |
| 2222 | SSH Client | Use terminal tools like Xshell, PuTTY, MobaXterm to connect to JumpServer via SSH Client |
| 33061 | Magnus MySQL Service Port | DB Client method to connect to MySQL database assets |
| 33062 | Magnus MariaDB Service Port | DB Client method to connect to MariaDB database assets |
| 54320 | Magnus PostgreSQL Service Port | DB Client method to connect to PostgreSQL database assets |
| 63790 | Magnus Redis Service Port | DB Client method to connect to Redis database assets |
| 15210 | Magnus Oracle Service Port | DB Client method to connect to Oracle database assets |
| 15900 | NEC Service Port | VNC service |
2 Firewall Common Commands⚓︎
- Confirm firewall status is running
firewall-cmd --state
- Temporarily open port (rule takes effect immediately, fails on reboot)
firewall-cmd --zone=public --add-port=80/tcp --permanent
- Temporarily close port (rule takes effect immediately, fails on reboot)
firewall-cmd --zone=public --remove-port=80/tcp --permanent
- Permanently allow port (requires reload to take effect)
firewall-cmd --zone=public --add-port=80/tcp --permanent firewall-cmd --reload
- Permanently remove port (requires reload to take effect)
firewall-cmd --zone=public --remove-port=80/tcp --permanent firewall-cmd --reload
- View effective port rules
firewall-cmd --zone=public --list-all