Network Management / (OpenView-NNM) Practitioners Forum

NNM and firewall

caterina di bel
Trusted Contributor.

NNM and firewall

In the HP White paper "Managing Devices with NNM in a Firewall environment" is said that when the manager submits a query to a node, it uses its 161 SNMP port to "any" of the node, but when the nodes replies it does it from its 161 SNMP port to "any" of the manager.
Does anybody knows if can be a problem for NNM if the communication "161, Manager -> any, node" is resctricted to a range?
Acclaimed Contributor.

Re: NNM and firewall

Hi Caterina,
take a look at the Managing Your Network through Firewalls whitepaper at

Ports to have open on firewall:
a) Dest UDP dest port 162
b) Dest UDP srce port 161
c) Dest ICMP 0 and 18 (echo and mask replies)
d) Dest TCP srce port 80, 280 (http discovery)
a) Srce UDP dest port 161
b) Srce ICMP 8 and 17 (echo and mask requests)

If management station/ collection station through firewall:
tcp 1024 - 5000 # ovrepld communication
udp 1024 - 5000 # snmp communication

Hope this helps

kamara kamara tralalallalalalala trallalalla trallalalla tralalallalalalala
caterina di bel
Trusted Contributor.

Re: NNM and firewall

Thank you Giovanni.
I'll have a look on this white paper.