Firewall port for Integration with XI on two subnets

[pclements]

I have the Analyser and Xi server on two different subnets separated by a firewall and I am also running local firewall on both Centos servers. What port/s are needed? In the firewall between the two system I get no denies. And when I netsat -an on each sever I do not see the other server. I have looked in the admin guide but cannot find what is required.

[cdienger]

TCP port 80 or 443 are required if you're following the guide at https://assets.nagios.com/downloads/nag ... ios_XI.pdf.

[pclements]

I am sorry but I have read that document and no where does it say what ports are required to be open between the Nagios Analyser and Nagios XI.

[tgriep]

The document doesn't specify the port numbers but when you integrate the Network Analyzer in Nagios XI, it uses an API call from the XI server to the Network Analyzer to gather the information and display / use on the XI server.
If the Network Analyzer server is not setup to use SSL, you would have to open port 80, it the server is setup to use SSL, then open port 443 between the servers.

If you setup the Network Analyzer to send alerts to the XI server using NRDP, you would have to open the same ports (80 and 443) going from the NNA server to the XI server.

[pclements]

Thank you, This needs to be documented from the vendor so we can use the document for compliance evidence. Thanks again for your help.

[cdienger]

The documentation does mention using http/ssl(typically ports 80 and 443) and there are similar settings seen when integrating the two. That said, I'll ping our doc team to see if we can update the guide to explicitly state which ports are used by default. Chances are if it isn't clear to one person, it's not clear to others as well so thanks for bringing it to our attention.

Was there anything further we can help related to this or are we okay to lock the thread?