Ports Used by the Appliance Parent topic

The following table shows the ports that are used with TippingPoint Advanced Threat Protection for Email and why they are used.

Ports used by ATP Email

Port
Protocol
Function
Purpose
22
TCP
Listening
Endpoints connect to ATP Email through SSH.
25
TCP
Listening
MTAs and mail servers connect to ATP Email through SMTP.
53
TCP/UDP
Outbound
ATP Email uses this port for DNS resolution.
80
TCP
Listening and outbound
ATP Email connects to other computers and integrated Trend Micro products and hosted services through this port.
  • Connect to the Customer Licensing Portal to manage the product license
  • Connect to Community File Reputation services when analyzing file samples
  • Connect to the Smart Protection Network and query Web Reputation Services
  • Upload virtual analyzer images to TippingPoint Advanced Threat Protection for Email using the image import tool
123
UDP
Outbound
ATP Email connects to the NTP server to synchronize time.
161
TCP
Listening
TippingPoint Advanced Threat Protection for Email uses this port to listen for requests from SNMP managers.
162
TCP
Outbound
TippingPoint Advanced Threat Protection for Email connects to SNMP mangers to send SNMP trap messages.
443
TCP
Listening and outbound
ATP Email uses this port to:
  • Access the management console with a computer through HTTPS
  • Communicate with Trend Micro Control Manager
  • Connect to the Smart Protection Network and query Web Reputation Services
  • Connect to Trend Micro Threat Connect
  • Send anonymous threat information to Smart Feedback
  • Update components by connecting to the ActiveUpdate server
  • Send product usage information to Trend Micro feedback servers
  • Verify the safety of files through the Certified Safe Software Service
  • Communicate with Deep Discovery Director
5274
TCP
Outbound
TippingPoint Advanced Threat Protection for Email uses this port as the default port to connect to the Smart Protection Server for web reputation services.
User-defined
N/A
Outbound
TippingPoint Advanced Threat Protection for Email uses the specified port to send logs to syslog servers.