OEM 13c Port Details

OEM 13c Port Details

Enterprise Manager Central Console Http SSL Port=7802
Enterprise Manager Upload Http Port=4889
Enterprise Manager Upload Http SSL Port=4903
OHS Http Port=9788
BI Publisher Http Port=9701
Node Manager Http SSL Port=7403
BI Publisher Http SSL Port=9803
OHS Http SSL Port=9851
Managed Server Http Port=7202
Oracle Management Agent Port=3872
Enterprise Manager Central Console Http Port=7788
Admin Server Http SSL Port=7102
Managed Server Http SSL Port=7301

Diagram showing ports details for OEM 13C

OEM 13C PORTS

ports are divided into 4 Categories
-----------------------------------------

1. Agent and OMS: This is the communication between the targets’ agents to OMS.
2. Browser and OMS: This is browser traffic to OMS.
3. Internal within OMS: This is communication internal to OMS only.
4. OMS and OMR: This is repository traffic from the OMS to the OMR.
5. Workstations and OMR: You still need to access the OMR database from your workstations.

Recommended Port Range	Chosen Port	Purpose	Initiator	Used?	Comments
Agent and OMS
	22	OMS to ssh to target hosts.	OMS	YES	Can be revoked after agent deployment.
3872, 1830-1849	3872	Oracle Management Agent port	OMS	YES
4889-4898	4889	Enterprise Manager Upload Http port	Agent	NO	Locked by default
1159, 4899-4908	4903	Enterprise Manager Upload Http SSL port	Agent	YES
Browser and OMS
	80	http	Browser	YES
	443	https	Browser	YES
7101-7200	7102	Admin Server Http SSL port	Browser	YES
7788-7798	7788	Enterprise Manager Central Console Http port	Browser	NO	Locked by default
7799-7809	7802	Enterprise Manager Central Console Http SSL port	Browser	YES
9788, 9751-9800	9788	OHS Http port	Browser	NO
9899, 9851-9900	9851	OHS Http SSL port	Browser	YES
9701, 9701-9750	9701	BI Publisher Http port	Browser	NO	Locked by default
9801, 9801-9850	9803	BI Publisher Http SSL port	Browser	YES
Internal within OMS
7201-7300	7202	Managed Server Http port	???	NO	Rediections between OHS and Weblogic only.
7301-7400	7301	Managed Server Http SSL port	???	YES	Rediections between OHS and Weblogic only.
7401-7500	7403	Node Manager Http SSL port	???	YES
OMS and OMR
	1521	Oracle database port	OMS	YES	This port needs to be opened for the hostnames, VIPs, and the SCAN name/IPs.
Workstations and OMR
	1521	Oracle database port	Workstations	YES	This port needs to be opened for the hostnames, VIPs, and the SCAN name/IPs.

 Reference - OEM13C_EXPLANATION

External Ports

These ports will be used in every Enterprise Manager 12c installation and will require firewall and/or ACL modifications if your network is restricted.  These are also the components that will be added to your load balancer configuration.

Default Port	Range	Component	Usage	Modify
4889	4889 – 4898	Enterprise Manager OHS Upload HTTP	Agent Communication to OMS (unsecure). Used in load balancer.	To modify after install follow notes 1381030.1 and 1385776.1. Requires changes on all Agents.
1159	1159, 4899 – 4908	Enterprise Manager OHS Upload HTTP SSL	Agent Communication to OMS (secure). Used in load balancer.	To modify after install follow notes 1381030.1 and 1385776.1. Requires changes on all Agents.
7788	7788 – 7798	Enterprise Manager OHS Central Console HTTP (Apache/UI)	Web browser connecting to Cloud Control Console (unsecure). Used in load balancer and for EM CLI.	To modify after install follow notes 1381030.1.
7799	7799 - 7809	Enterprise Manager OHS Central Console HTTP SSL (Apache/UI)	Web browser connecting to Cloud Control Console (secure). Used in load balancer and for EM CLI.	To modify after install follow note 1381030.1.
7101	7101 - 7200	EM Domain WebLogic Admin Server HTTP SSL Port	Cloud Control Admin Server.	To modify after install follow note 1109638.1.
3872	3872, 1830 – 1849	Cloud Control Agent	Only the OMS will connect to this port, to either report changes in the monitoring, submit jobs, or to request real-time statistics.	Port can be provided during Agent install. If the agent port needs to be changed at a later date this can be done with the following command on the agent: emctl setproperty agent -name EMD_URL -value https://hostname.domain:port/emd/main/ This will allow the agent to run on the new port, however the target does not get renamed so continues to show the original port.
1521*	Depends on Listener Configuration	Database Targets -  SQL*Net Listener	For Repository database, only the OMS will connect to store management data from the agents. For all monitored target databases OMS will retrieve information requested by browser clients.	To modify this port for the repository database: Change the listener.ora file for the EM repository. Restart the listener. Then for every OMS machine using that repository run the following: emctl stop oms emctl config oms -store_repos_details -repos_conndesc -repos_user sysman emctl start oms emctl config emrep -agent -conn_desc    To modify this port for monitored targets, change the listener configuration on the target, then update Monitoring Configuration in EM.
7101	7101 - 7200	FMW Targets – Admin Console	Outgoing from OMS, used for managing FMW targets.	To modify after install follow note 1109638.1.
NA	NA	ICMP	Outgoing from OMS to host servers if the Agent is unreachable. Validates if server is up or down.	NA

Internal Ports

These ports are required for internal Enterprise Manager communication and typically do not require additional firewall/ACL configuration.

Default Port	Range	Component	Usage	Modify
7201	7201 – 7300	EM Domain WebLogic Managed Server HTTP Port	Used for Fusion Middleware communication.	Configured during installation
7301	7301 – 7400	EM Domain WebLogic Managed Server HTTP SSL Port	Used for Fusion Middleware communication.	Configured during installation
7401	7401 – 7500	Node Manager HTTP SSL Port	Used for Fusion Middleware communication.	Configured during installation
6702	6100 - 6199	Oracle Notification Server (OPMN) Local	Ports used by OPMN  can be verified from/gc_inst/WebTierIH1 /config /OPMN/opmn/opmn.xml:	Modify the opmn.xml to use free ports as below: 1. Stop OMS 2. Take a backup of the existing opmn.xml and ports.prop in the / gc_inst/WebTierIH1/ config /OPMN/opmn directory. 3. Edit the opmn.xml file, under the element, modify the local / remote port, as necessary to the free port available and save the file. 4. Edit the ports.prop file and modify the remote / local port parameters as necessary and save the file. 5. Start the OMS
6703	6200 - 6201	Oracle Notification Server (OPMN) Remote	Ports used by OPMN  can be verified from/gc_inst/WebTierIH1 /config/OPMN/opmn/opmn.xml:	Modify the opmn.xml to use free ports as below: 1. Stop OMS 2. Take a backup of the existing opmn.xml and ports.prop in the/gc_inst/WebTierIH1/ config/OPMN/opmn directory. 3. Edit the opmn.xml file, under the element, modify the local / remote port, as necessary to the free port available and save the file. 4. Edit the ports.prop file and modify the remote / local port parameters as necessary and save the file. 5. Start the OMS

Optional

These ports required only if certain components are to be used and firewall/ACL changes may be needed.

Default Port	Range	Component	Usage	Modify
443		Secure web connection (https - 443) to updates.oracle.com support.oracle.com ccr.oracle.com login.oracle.com aru-akam.oracle.com	Outgoing from OMS used for online communication with Oracle for OCM, MOS, Patching, Self-Updates, ASR	Proxy settings defined via the UI (Setup -> Proxy Settings) Do not use the OMS parameters!
51099		Application Dependency and Performance RMI Registry Port	ADP	Configured during installation
55003		Application Dependency and Performance Java Provider Port	ADP	Configured during installation
55000		Application Dependency and Performance Remote Service Controller Port	ADP	Configured during installation
4210		Listen	ADP	Configured during installation
4211		SSL Listen Port	ADP	Configured during installation
3800		JVM Managed Server Listen	JVM	Configured during installation
3801		JVM Managed Server SSL Listen	JVM	Configured during installation
9701	9701-49152	BI Publisher HTTP	BI Publisher	During install can modify with configureBIP script.  Post-install can be modified per Note 1524248.1
9702	9701-49152	BI Publisher HTTP SSL Port	BI Publisher	During install can modify with configureBIP script.  Post-install can be modified per Note 1524248.1