Search another article?
On-Premise
The SGBox appliance must be able to communicate via HTTPS with the following address:
https://www.sgbox.it
The connection is required to access updates (available in the applications section of the SCM module). The appliance/collector operating system also uses HTTP/HTTPS protocols to access Ubuntu repositories (*.ubuntu.com).
The appliance syslog server is configured to receive logs via UDP (port 514). SSH (port 22/tcp) traffic must be allowed to access the command-line interface (CLI) (both manifold and appliance).
The virtual collector (if used) and the SGBox agent for Windows (SGAgent) communicate with the appliance via HTTPS (TLS). OpenVAS (installed on the manifold and used by the SGBox NVS module) uses the Greenbone Community Feed (GCF) to keep network vulnerability tests (NVTs) up to date. The frequency of updates is daily and the synchronization activity is based on rsync. The collector must be able to access the following address via rsync protocol (port 873/tcp):
| From | To | Port | Mode |
|---|---|---|---|
| Client (User) | Main Appliance – WebUI | 443/tcp | HTTPS |
| Client (User) | Main Appliance – CLI | 22/tcp | SSH |
| Client (User) | Collector – CLI | 22/tcp | SSH |
| SGAgent | Main appliance / collector | 443/tcp | HTTPS |
| Data source | Collector / Appliance | 514/udp | Syslog |
| Data source | Collector / Appliance | 514/tcp | Syslog |
| Main Appliance/Collector | apps.sgbox.it | 80/tcp 443/tcp | HTTP/S |
| Main Appliance/Collector | *.ubuntu.com | 80/tcp 443/tcp | HTTP/S |
| Collector | feed.community.greenbone.net | 873/tcp | rsync |
| Main Appliance | No Syslog datasources | eg. 1433/tcp, 1521/tcp, 443/tcp | DB, other |
| Main Appliance | Active Directory (LDAP) | 389/tcp, 636/tcp | LDAP/LDAPS |
| Client (User) | Collector (OpenVAS) | 4000/tcp | OpenVAS console HTTPS |
| Appliance | Appliance | 4000/tcp | HTTPS |
On-Cloud
The main difference from on-premise is that only the collector must communicate with our cloud on port 443/tcp (HTTPS).