Security for Servers Performing Network Discovery
Updated: May 13, 2016
Applies To: System Center 2012 R2 Operations Manager, System Center 2012 - Operations Manager, System Center 2012 SP1 - Operations Manager
You must ensure the following firewall configuration for network monitoring:
All firewalls between the management servers in the resource pool and the network devices need to allow SNMP (UDP) and ICMP bi-directionally, and ports 161 and 162 need to be open bi-directionally. This includes Windows Firewall on the management server itself.
If your network devices are using a port other than 161 and 162, you need to open bi-directional UDP traffic on these ports as well.
Note for customers who used EMC Solutions for Microsoft System Center Operations Manager: EMC Smarts included tools to create an isolation layer to prevent denial of service attacks. In System Center 2012 – Operations Manager, you need to protect your network against packet storms by using external tools.
Monitoring Networks by Using Operations Manager
How to Discover Network Devices in Operations Manager
Network Device Discovery Settings
Run As Accounts for Network Monitoring in Operations Manager
How to Delete or Restore a Network Device in Operations Manager
Viewing Network Devices and Data in Operations Manager
Tuning Network Monitoring
Network Devices Supported for Discovery by Operations Manager
Reports for Network Monitoring in Operations Manager