|
Citrix License Server
|
|
License Manager Daemon
|
TCP
|
27000
|
Handles initial point of contact for license requests
|
|
Citrix Vendor Daemon
|
TCP
|
7279
|
Check-in/check-out of Citrix licenses
|
|
License Management Console
|
TCP
|
8082
|
Web-based administration console
|
| |
|
|
|
|
Common Citrix Communication Ports
|
|
Citrix Receiver
|
TCP
|
80/443
|
Communication with Merchandising Server
|
|
ICA
|
TCP
|
1494
|
Access to applications and virtual desktops
|
|
Session Reliability
|
TCP
|
2598
|
Access to applications and virtual desktops
|
|
IMA
|
TCP
|
2512
|
Independent Management Architecture (IMA)
|
|
Management Console
|
TCP
|
2513
|
Citrix Management Consoles
|
|
Application / Desktop Request
|
TCP
|
80/8080/443
|
XML Service
|
|
STA
|
TCP
|
80/8080/443
|
Secure Ticketing Authority (embedded into XML Service)
|
| |
|
|
|
|
XenApp
|
|
Offline Plug-in
|
SMB
|
445
|
Communication with Application Hub (File Server / Share)
|
|
HTTP/S
|
80/443
|
Communication with Application Hub (Web Server/ File Server / Share)
|
|
Power & Capacity Management Agent
|
TCP
|
11161
|
Communication with Concentrator
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
| |
|
|
|
|
XenDesktop Virtualization Infrastructure
|
|
XenServer
|
TCP
|
80/443
|
Communication with XenServer infrastructure
|
|
Hyper-V
|
TCP
|
8100
|
SCVMM Administrator Console
|
|
VMware
|
TCP
|
443
|
VMware Web Services communication
|
|
Virtual Desktop Agent
|
TCO
|
8080
|
Communication between Desktop Delivery Controller and Virtual Desktop Agent
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
| |
|
|
|
|
XenServer
|
|
XenCenter
|
TCP
|
22
|
SSH
|
|
TCP
|
443
|
Management using XenAPI
|
|
TCP
|
5900
|
VNC for Linux Guests
|
|
TCP
|
3389
|
RDP for Windows Guests
|
|
Resource Pool
|
TCP
|
22
|
SSH
|
|
TCP
|
443
|
Management using XenAPI
|
|
Infrastructure
|
TCP/UDP
|
123
|
NTP
|
|
TCP/UDP
|
53
|
DNS
|
|
TCP
|
389
|
Active Directory
|
|
TCP/UDP
|
139
|
ISO Store: NetBIOS Session Service
|
|
TCP/UDP
|
445
|
ISO Store: Microsoft-DS
|
| |
|
|
|
|
Lab Manager
|
|
End-Device to Lab Manager Server User Interface
|
TCP
|
8443
|
End device communication with Lab Manager Server User interface
|
|
End-Device to Virtual Machines
|
TCP
|
3389
|
RDP for Windows Guests
|
|
TCP
|
5900
|
VNC for Linux Guests
|
|
End-Device to Virtualization
|
TCP
|
5900 –5999
|
Connections for XenServer Host
|
|
TCP
|
2179
|
Connections for Microsoft Hyper-V
|
|
VMAgent to Lab Manager Server
|
TCP/UDP
|
35110 - 35112
|
Server Discovery ports for VMAgent
|
|
TCP
|
8443
|
Secure (HTTPS) Server Discovery ports for VMAgent
|
|
Lab Manager Server to Active Directory
|
TCP
|
389
|
LDAP
|
|
TCP
|
636
|
LDAP over SSL (LDAPS)
|
| |
|
|
|
|
StageManager
|
|
End-Device to StageManager Server User Interface
|
TCP
|
9443
|
End device communication with StageManager Server User interface
|
|
End-Device to Virtual Machines
|
TCP
|
3389
|
RDP for Windows Guests
|
|
TCP
|
5900
|
VNC for Linux Guests
|
|
End-Device to Virtualization Host
|
TCP
|
5900 – 5999
|
Connections for XenServer
|
|
TCP
|
2179
|
Connections for Microsoft Hyper-V
|
|
VMAgent to StageManager Server
|
TCP/UDP
|
35110 - 35112
|
Discovery ports for VMAgent/GuestAgent Server
|
|
TCP
|
9443
|
Secure (HTTPS) Server Discovery ports for VMAgent/GuestAgent
|
|
StageManager Server to Active Directory
|
TCP
|
389
|
LDAP
|
|
TCP
|
636
|
LDAP over SSL (LDAPS)
|
| |
|
|
|
|
StorageLink
|
|
StorageLink Service
|
TCP
|
21605
|
Communication of StorageLink Manager to StorageLink Service
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
| |
|
|
|
|
NetScaler / Access Gateway Enterprise Edition
|
|
Administration
|
|
|
|
|
SSH
|
TCP
|
22
|
CLI Administration (encrypted)
|
|
HTTP/S
|
TCP
|
80/443
|
GUI Administration
|
|
Java
|
TCP
|
3008
|
GUI Administration (encrypted )
|
|
TCP
|
3010
|
GUI (no encryption)
|
|
Authentication
|
|
|
|
|
LDAP
|
TCP/UDP
|
389
|
LDAP connection
|
|
TCP/UDP
|
636
|
LDAP SSL connection
|
|
TCP
|
3268
|
LDAP connection to Global Catalog
|
|
RADIUS
|
TCP/UDP
|
1812
|
RADIUS connection
|
|
DNS
|
TCP/UDP
|
53
|
|
|
High Availability
|
UDP
|
3003
|
Exchange of Hello packets for communicating UP/DOWN status (heartbeat)
|
|
TCP
|
3008
|
Secure High Availability configuration synchronization
|
|
TCP
|
3009
|
Secure command propagation and MEP
|
|
TCP
|
3010
|
High Availability configuration synchronization plus web-logging and audit server logging
|
|
TCP
|
3011
|
Command propagation and MEP
|
| |
|
|
|
|
Access Gateway Standard / Advanced Edition
|
|
Client Connections
|
TCP
|
443
|
TCP Port used for connecting to an Access Gateway Deployment
|
|
Advanced Access Control (AAC)
|
TCP
|
80/443
|
Communication between Access Gateway Standard and Advanced Access Control Server
|
|
Administration
|
|
Appliance
|
TCP
|
9001
|
Administration Website
|
|
TCP
|
9002
|
Administrative Desktop (until 4.5)
|
|
TCP
|
9005
|
AAC
|
|
AAC
|
TCP
|
2513
|
IMA-based communication
|
|
Authentication
|
|
|
|
|
LDAP
|
TCP
|
389
|
LDAP connection
|
|
RADIUS
|
TCP/UDP
|
1812
|
RADIUS connection
|
|
DNS
|
TCP/UDP
|
53
|
DNS name resolution
|
| |
|
|
|
| |
|
|
|
|
Branch Repeater
|
|
Administration
|
TCP
|
80/443
|
Citrix Repeater Console
|
|
TCP
|
3389
|
RDP connection to server console (Windows)
|
|
Appliance to Appliance
|
TCP
|
N/A
|
Pass through of native application ports
|
|
Client to Appliance
|
TCP
|
443
|
Client to Appliance communication
|
| |
|
|
|
|
EdgeSight
|
|
Agent
|
TCP
|
80/443
|
Communication with EdgeSight Server for payloads and alerts
|
|
TCP
|
9036
|
EdgeSight Agent internal communication (client-side database)
|
|
Web Console
|
TCP
|
9035
|
Communication with RSCorSvc on EdgeSight Agent
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
| |
|
|
|
|
EasyCall
|
|
EasyCall Client
|
TCP
|
8443
|
PSync
|
|
EasyCall Gateway
|
TCP
|
5060
|
EasyCall Gateway communicates with the SIP trunk over port 5060
|
|
Admin Console
|
TCP
|
443
|
Administration of EasyCall
|
|
LDAP
|
TCP
|
389
|
Active Directory/LDAP
|
|
PBX
|
TCP
|
N/A
|
The PBX port depends on the vendor and varies.
|
| |
|
|
|
|
Password Manager
|
|
Password Manager Service
|
TCP
|
443
|
Communication with Management Console and Password Manager Agent (non-IMA)
|
|
Credential Store on Network File Share
|
TCP/UDP
|
445
|
CIFS
|
|
TCP/UDP
|
135 - 139
|
NetBIOS
|
|
Active Directory
|
TCP/UDP
|
389
|
LDAP connection
|
|
TCP/UDP
|
636
|
LDAP SSL connection
|
|
TCP
|
3268
|
LDAP connection to Global Catalog
|
|
TCP
|
3269
|
LDAP SSL connection to Global Catalog
|
|
Novell File Share
|
TCP/UDP
|
524
|
ZENworks communication
|
| |
|
|
|
|
Provisioning services
|
|
PXE
|
Broadcast
|
|
Target devices PXE booting from network
|
|
DHCP
|
UDP
|
66
|
DHCP Option for TFTP Server Name (Bootstrap Protocol Server)
|
|
UDP
|
67
|
DHCP Option for Bootfile Name (Bootstrap Protocol Client)
|
|
TFTP
|
UDP
|
69
|
Trivial File Transfer
|
|
Console
|
TCP
|
54321-54322
|
SOAP Service
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
|
Streaming Services
|
UDP
|
6910 – 6930
|
Provisioning services Streaming Service
|
|
Server Communication
|
UDP
|
6905 - 6909
|
Inter-server communication
|
|
Boot Login
|
UDP
|
6910
|
Target Device logon at Provisioning services
|
|
Write Cache
|
UDP
|
10802-10803
|
Target Device communication with its Write Cache
|
| |
|
|
|
|
SmartAuditor
|
|
Components (Agent / Player)
|
TCP/UDP
|
80/443
|
SmartAuditor components connecting to SmartAuditor Broker
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
|
|
|
|
|
|
Microsoft Message Queuing (MSMQ)
|
|
|
Provides reliable transport of data from SmartAuditor Agent to SmartAuditor Server using an MSMQ private message queue named CitrixSmAudData
|
|
MSMQ Service (default)
|
TCP/UDP
|
1801
|
MSMQ
|
|
TCP
|
2101
|
MSMQ-DCs
|
|
TCP
|
2103
|
MSMQ-RPC
|
|
TCP
|
2105
|
MSMQ-RPC
|
|
TCP
|
2107
|
MSMQ-Mgmt
|
|
UDP
|
3527
|
MSMQ-Ping
|
|
TCP
|
135
|
RPC
|
|
MSMQ Service HTTP/S
|
TCP
|
80/443
|
Secured connections
|
| |
|
|
|
|
Workflow Studio
|
|
Console
|
TCP
|
8010
|
Connection to remote runtime
|
|
Database
|
TCP
|
1433
|
Microsoft SQL Server
|
| |
|
|
|
|
Citrix Online Products
|
|
GoToMeeting
|
TCP
|
80/443/8200
|
Contacting GoToMeeting service broker using the Endpoint Gateway (EGW)
|
|
GoToWebinar
|
|
GoToMyPC
|
|
GoToAssist
|
