Deployment Requirements | Trend Micro Service Central

web

You’re offline. This is a read only version of the page.

Table of Contents

The page you're looking for can't be found or is under maintenance

Try again later or go to the home page

Go to home page

Deployment Requirements

Requirement	Details
Deep Discovery Analyzer	Obtain from Trend Micro
Deep Discovery Analyzer installation DVD	Obtain from Trend Micro
Activation Code	Obtain from Trend Micro
Monitor and VGA cable	Connects to the VGA port of the appliance
USB keyboard	Connects to a USB port of the appliance
USB mouse	Connects to a USB port of the appliance
Ethernet cables	One cable connects the management port of the appliance to the management network. One cable connects a custom port to an isolated network that is reserved for sandbox analysis. If using high availability, one cable connects eth3 to eth3 on an identical appliance.
IP addresses	One static IP address in the management network If sandbox instances require Internet connectivity, one extra IP address for Virtual Analyzer If using high availability, one extra virtual IP address
Software	Any of the following browsers: Microsoft Edge™ Google Chrome™ Mozilla Firefox™
Third-party software licenses	Licenses for all third-party software installed on sandbox images
Pre-requisites for product integration	If integrating with another product, verify that all integration requirements have been met. Some integrating products require additional configuration (for example: host names, IP addresses, SSL ports, etc) to integrate with Deep Discovery Analyzer properly. See the product documentation for details. Some integrating products require an API key provided by Deep Discovery Analyzer. If the Deep Discovery Analyzer API key changes after registering with the integrated product, remove Deep Discovery Analyzer from the integrated product and add it again. Internet Content Adaptation Protocol (ICAP) clients must comply with RFC 3507.

Logon Credentials

Console	Purpose	Default Credentials	Your Information
Preconfiguration console	Perform initial configuration tasks. See Configuring Network Addresses on the Preconfiguration Console.	Deep Discovery Analyzer login (not configurable): `admin` Password: `Admin1234!`	Password:
Management console	Configure product settings View and download reports	User name (not configurable): `admin` Password: `Admin1234!`	Password:
		Other user accounts (configured on the management console, in Administration → Accounts / Contacts → Accounts)	User account 1: User name: Password:
			User account 2: User name: Password:

Ports Used by the Appliance

The following table shows the ports that are used with Deep Discovery Analyzer and why they are used.

Ports used by Deep Discovery Analyzer

Port	Protocol	Function	Purpose
21	TCP	Outbound	Deep Discovery Analyzer uses this port to send backup data to FTP servers.
22	TCP	Listening and outbound	Deep Discovery Analyzer uses this port to: Access the preconfiguration console with a computer through SSH Send backup data to an SFTP server Send debug logs to an SFTP server
53	TCP/UDP	Outbound	Deep Discovery Analyzer uses this port for DNS resolution.
80	TCP	Listening (disabled by default)	This port is disabled by default. Deep Discovery Analyzer uses this port for the Virtual Analyzer image import tool.
123	UDP	Outbound	Deep Discovery Analyzer connects to the NTP server to synchronize time.
137	UDP	Outbound	Deep Discovery Analyzer uses NetBIOS to resolve IP addresses to host names.
161	UDP	Listening	Deep Discovery Analyzer uses this port to listen for requests from SNMP managers.
162	UDP	Outbound	Deep Discovery Analyzer uses this port to send trap messages to SNMP managers.
443	TCP	Listening	Deep Discovery Analyzer uses this port to: Access the management console with a computer through HTTPS Communicate with other Deep Discovery Analyzer appliances in a cluster environment Receive files from a computer via the Manual Submission Tool Receive samples from integrated products Send Suspicious Objects list and analysis information to integrated products through the Deep Discovery Analyzer webservice protocol Communicate with Trend Micro Apex Central
443	TCP	Outbound	Deep Discovery Analyzer uses this port to: Connect to Trend Micro Threat Connect Connect to Web Reputation Services to query the blocking reason Connect to Sandbox as a Service for analysis of samples related to Mac OS Connect to the Predictive Machine Learning engine Update components by connecting to the ActiveUpdate server Verify the safety of files through the Certified Safe Software Service Communicate with Deep Discovery Director - On-premises version Query Web Reputation Services through the Smart Protection Network Connect to the Community File Reputation service for file prevalence when analyzing file samples Connect to the Community Domain/IP Reputation service Verify the Deep Discovery Analyzer product license through Customer Licensing Portal Connect to Dynamic URL Scanning Communicate with Service Gateway to integrate with Trend Vision One Connect to Azure Blob or AWS S3 for network share scanning
User-defined		Listening	Deep Discovery Analyzer uses this user-defined port to: Receive samples from ICAP clients using the ICAP protocol Receive sample submissions through email messages Allow users to connect to a Virtual Analyzer instance using a VNC client
User-defined		Outbound	Deep Discovery Analyzer uses user-defined ports to: Send logs to syslog servers Connect to proxy servers Connect to the Smart Protection Server Connect to Microsoft Active Directory servers Send notifications and scheduled reports through SMTP