An AX SoftJACE platform is a customer-supplied Windows computer. Invariably, a local firewall is operating on this host—typically the Windows Firewall, built into the host’s Windows OS.
Firewall operation on a SoftJACE should continue during normal operation, to help maintain overall security. However, and as needed, selected software ports (TCP and UDP) need to be opened for inbound access in order to allow operation of various functions and drivers.
This is needed even for Workbench platform access, as covered in Platform daemon port. Table 1 lists a few commonly used (default) ports used by a NiagaraAX platform running a station.
Open SoftJACE firewall access to the ports below, as applicable.
Table 1. Default software ports (TCP and UDP) commonly needed for SoftJACE operation
| TCP port | UDP port | Usage |
|---|---|---|
| 3011 | — | Niagara platform connection (non-SSL default) |
| 5011 | — | Niagara platformssl connection (SSL default) |
| 1911 | 1911 | Niagara Fox non-SSL defaults (Workbench, station-to-station) |
| 4911 | 4911 | Niagara Fox SSL defaults (Workbench, station-to-station) |
| 80 | — | HTTP, Hx access to a station (WebService non-SSL default) |
| 443 | — | HTTPS access to a station (WebService SSL default) |
| 25 | — | Email SMTP default |
| 587, 465 | Email SSL SMTP defaults | |
| — | 123 | NTP (Network Time Protocol), fixed |
| — | 47808 | BACnet/IP (conventional port), default |
| 502 | — | Modbus TCP (conventional port), default |
| — | 161, 162 | SNMP, SNMP Trap (conventional ports), defaults |
Only a few of the various IP-based drivers are included above—refer to a specific NiagaraAX driver document for more IP port usage details.
Copyright © 2000-2016 Tridium Inc. All rights reserved.