David,
When HPSUM initiates communications to remote targets, it uses several well-known ports depending on the OS. For Windows, it uses ports 138 and 445 to connect to remote targets (equivalent to net use functionality). For Linux, HPSUM uses port 22 (ssh) to start the communications with the remote target.
In addition, HPSUM uses random ports above 49152 to communicate between the remote target and the workstation where HPSUM is executing. When you run HPSUM, HPSUM uses the adminstrator/root privileges to dynamically register the port with the default Windows/Linux firewalls for the length of the application execution, then closes and deregisters the port. All communications are over a SOAP server using SSL with additional functionality to prevent man-in-the-middle, packet spoofing, packet replay and several other attack profiles. The randomness of the port is one of the methods we use to prevent port scanning software from denying service to our application. The SOAP server is landed on the remote target using the initial ports described above (ports 138, 445, and 22) and then allocates another independent port above 49152 for its communications back to the workstation where HPSUM is running. During shutdown of HPSUM, the SOAP server is shutdown and removed from the target server, leaving no trace it was there other than the log files in the %WINDOWS%\temp directory.
The firewall software integration is in all versions of HPSUM starting with v3.0.2 that shipped with the Firmware Maintenance CD v7.90. The HPSUM version shipped with the Windows PSPs 7.90 (version 3.0.1) will not work if a firewall is installed. The next version of the Windows PSPs will have this functionality.
We do not currently allow the port that HPSUM uses to be configured. If there are enough customers who want the ability to configure a defined port number, we could look into adding it in a future release.
Regards,
Michael Garner
HPSUM Architect
