Port Security

GENESIS uses a number of ports for communication. To reduce the attack surface, you should only open the ports that are needed for the services that are used by your system. FrameWorX client/server communication is required on all GENESIS systems. All other ports are needed only when using the services described in the following tables.

The following table lists the ports that are used by GENESIS components.

Component Name

Port

Protocol

Scope for Opening the Port

BACnet/IP

47808

UDP

This is the default port that is opened by the application. The port is configurable.

BACnet/SC

47900

TCP

This is the default port that is opened by the application if BACnet/SC communication is enabled. The port is configurable.

Camera Streaming Proxy Service

4530
4531 (TLS)

TCP

 

FrameWorX client/server communication

80 (HTTP)
443 (HTTPS)

TCP

 

FrameWorX OPC UA interface - Discovery server

4840 (Discovery)
5011
5013

TCP

 

SNMP traps

162

UDP

This is the default port that is opened by the application if the SNMP traps are enabled.

Web API Service

9610 (REST)

TCP

Obsolete

Web API Service (localhost)

4599
443 (IIS Rewrite)

HTTP

 

WebHMI via IIS

80 (HTTP)
443 (HTTPS)

TCP

The port is configurable.

The following table lists the ports that are used by the GENESIS point managers.

Point Manager

Port

Protocol

Alarm Collector

8340 (localhost)

TCP

Alarm Historian Point Manager

8339 (localhost)

TCP

Alarm Historian Query Interface

8338 (localhost)

TCP

Alarm Server Point Manager

8337 (localhost)

TCP

Alert Notifications Point Manager

8365 (localhost)

TCP

Alert Notifications REST Point Manager

8366 (localhost)

TCP

Alert Notifications Sierra Point Manager

8378 (localhost)

TCP

Assets Point Manager

8351 (localhost)

TCP

BACnet Point Manager

8335 (localhost)

TCP

BACnet Query Interface

8334 (localhost)

TCP

BI Server Point Manager

8362 (localhost)

TCP

Bridging Point Manager

8369 (localhost)

TCP

Bridging Scheduler

8370 (localhost)

TCP

Camera Point Manager

8356 (localhost)

TCP

Classic OPC Point Manager

8328 (localhost)

TCP

Connected Field Service Workers Point Manager

8374 (localhost)

TCP

Connected Field Service Workflows Point Manager

8375 (localhost)

TCP

Connected Field Service Workflows Scheduler

8376 (localhost)

TCP

Data Historian Point Manager

8302 (localhost)

TCP

Data Historian Query Interface

8341 (localhost)

TCP

Databases Point Manager

8346 (localhost)

TCP

Fault Detection Point Manager

8354 (localhost)

TCP

Fault Detection Query Interface

8353 (localhost)

TCP

Health Monitor Point Manager

8330 (localhost)

TCP

Internet of Things Publisher Point Manager

8373 (localhost)

TCP

Internet of Things Subscriber Point Manager

8372 (localhost)

TCP

Mitsubishi Electric FA Point Manager

8336 (localhost)

TCP

Modbus Point Manager

8371 (localhost)

TCP

OPC UA Point Manager

8377 (localhost)

TCP

Push Notifications Point Manager

8357 (localhost)

TCP

Recipes Point Manager

8358 (localhost)

TCP

Reports Point Manager

8367 (localhost)

TCP

Schedules Point Manager

8355 (localhost)

TCP

Search Point Manager

8363 (localhost)

TCP

Simulator Point Manager

8325 (localhost)

TCP

SNMP Point Manager

8324 (localhost)

TCP

Triggers Point Manager

8359 (localhost)

TCP

Web Services Point Manager

8345 (localhost)

TCP

Workbench Point Manager

8347 (localhost)

TCP

Unified Data Manager

8321 (localhost)

TCP

User Profiles Point Manager

8364 (localhost)

TCP

Hyper Historian Collector - Hard-coded

8303 (localhost)

TCP

Data Historian Logger - Hard-coded

8304 (localhost)

TCP

Hyper Historian Redundancy Point Manager - Hard-coded

8305 (localhost)

TCP

Data Historian Redundancy Point Manager - Hard-coded

8306 (localhost)

TCP

Data Historian Logger - Hard-coded

8307 (localhost)

TCP

Hyper Historian Collector - Hard-coded

8308 (localhost)

TCP

Registers Point Manager

8500 (localhost)

TCP

Value Sets Point Manager

8501 (localhost)

TCP