10 best practices for hardening SQL Server security

Default SQL Server port

Port / January 11, 2020

Port Default Description Traffic direction
Agent-server communication port 80 TCP port that the ePO server service uses to receive requests from agents. Inbound connection to the Agent Handler and the ePO server from the McAfee Agent. Inbound connection to the ePO server from the remote Agent Handler.
Agent-server communication secure port

Software Manager, Product Compatibility List, and License Manager port

443 TCP port that the ePO server service uses to receive requests from agents and remote Agent Handlers.
TCP port that the ePO server's Software Manager uses to connect to McAfee.
TCP port that the ePO server uses to connect to the McAfee software updates server (s-download.mcafee.com), McAfee license server (lc.mcafee.com), and McAfee Product Compatibility List (epo.mcafee.com).
Inbound connection to the Agent Handler and the ePO server from the McAfee Agent. Inbound connection to the ePO server from the remote Agent Handler.
Outbound connection from the ePO server to McAfee servers.
Agent wake-up communication port

SuperAgent repository port

8081 TCP port that agents use to receive agent wake-up requests from the ePO server or Agent Handler.
TCP port that the SuperAgents configured as repositories that are used to receive content from the ePO server during repository replication, and to serve content to client machines.
Inbound connection from the ePO server/Agent Handler to the McAfee Agent.
Inbound connection from client machines to SuperAgents configured as repositories.
Agent broadcast communication port 8082 UDP port that the SuperAgents use to forward messages from the ePO server/Agent Handler. Outbound connection from the SuperAgents to other McAfee Agents.
Console-to-application server communication port 8443 TCP port that the ePO Application Server service uses to allow web browser UI access. Inbound connection to the ePO server from the ePO console.
Client-to-server authenticated communication port 8444 TCP Port that the Agent Handler uses to communicate with the ePO server to get required information (such as LDAP servers). Outbound connection from remote Agent Handlers to the ePO server.
SQL server TCP port 1433 TCP port used to communicate with the SQL server. This port is specified or determined automatically during the setup process. Outbound connection from the ePO server/Agent Handler to the SQL server.
SQL server UDP port 1434 UDP port used to request the TCP port that the SQL instance hosting the ePO database is using.
LDAP server port 389 TCP port used to retrieve LDAP information from Active Directory servers. Outbound connection from the ePO server/Agent Handler to an LDAP server.
SSL LDAP server port 636
SMB Windows domain controller port 445 TCP port used for ePO console login when authenticating Active Directory users. Outbound connection from the ePO server to the domain controller (Active Directory) server.

Source: kc.mcafee.com