SAP端口大全
摘自官方文档《TCP/IPPorts Used by SAP Applications》2009
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| NetWeaver Appl ication Serv er A BAP inclu ding Internet C onn ection Manager (ICM) | ||||||
| Dispatcher | 32NN sapdpNN | + | 3200 | 3200-3299 sapdp00-sapdp99 | + | SAP Dispatcher, used by SAP GUI for Windows and Java |
| Gateway | 33NN sapgwNN | + | 3300 | 3300-3399 sapgw00-sapgw99 | + | SAP gateway, used for CPIC and RFC communication |
| Gateway | 48NN sapgwNNs | + | 4800 | 4800-4899 sapgw00ssapgw99s | + | SNC secured SAP gateway, used for
CPIC and RFC communication, see SNC Users Guide for details, only encrypted communications. Please note, there is no related sapdpNNs (47xx) port |
| ICM HTTP | 80NN | + | 8000 | Free | You can configure the system to use port number 80 after installation. | |
| ICM HTTPS | 443NN | + | Not active | Free | The port is not configured during installation. If you want to use HTTPS, you must configure it manually. | |
| ICM SMTP | 25 | + | Not active | Free | The port is not configured during installation. If you want to use SMTP, you must configure it manually. Only one instance per host should offer SMTP service. | |
| Message Server | 36NN sapmsSID | + | 3600 sapmsC11 | Free sapms<any SID> | Only CI (central instance)
Service names can be reassigned in /etc/services to an arbitrary value after installation. Relevant only for releases prior to SAP NetWeaver 7.0 | |
| Message Server HTTP | 81NN | + | 8100 | Free | Only CI (central instance) Can be used to retrieve system information via HTTP
Relevant only for releases prior to SAP NetWeaver 7.0 | |
| Message Server
HTTPS | 444NN | + | Not active | Free | Only CI (central instance)
The port is not configured during installation. Relevant only for releases prior to SAP NetWeaver 7.0 | |
| Central System Log | UDP: 12NN,
13NN, 14NN, 15 NN | + | Not active | Free | Syslog (rslgsend) uses UDP for communications, see Note 25526 for deatils | |
| Purely internal ports | ||||||
| Dispatcher | 32NN/UDP | 3200/UDP | 3200-3299/UDP | Only used on local host for signaling dispatcher, never seen on the network, disabled by default starting with 7.0 ( gw/use_udp=1 will enable UDP port ) | ||
| Gateway | 33NN/UDP | 3300/UDP | 3300-3399/UDP | + | ||
| ICM Admin | detected automatically | 65000 or next free lower port | 65000 or less | Internal communication. Automatically uses the first free port from 65000 downwards. Port accepts connections only from localhost. | ||
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| SAP NetWeaver Application Ser ver Java | ||||||
| JAVA EE Dispatcher ( replaced by ICM in re lease SAP Net Weaver 7.1) | ||||||
| HTTP | 5NN00 | + | 50000 | 50000-59900 | NN = Instance number (00…99) | |
| HTTP over SSL | 5NN01 | + | 50001 | 50001-59901 | ||
| IIOP initial context | 5NN02 | + | 50002 | 50002-59902 | ||
| IIOP over SSL | 5NN03 | + | 50003 | 50003-59903 | ||
| P4 | 5NN04 | + | 50004 | 50004-59904 | ||
| P4 over HTTP tunneling | 5NN05 | + | 50005 | 50005-59905 | Relevant only for releases up to and including SAP NetWeaver 7.0 | |
| P4 over SSL | 5NN06 | + | 50006 | 50006-59906 | ||
| IIOP | 5NN07 | + | 50007 | 50007-59907 | ||
| Telnet | 5NN08 | + | 50008 | 50008-59908 | ||
| JMS | 5NN10 | + | 50010 | 50010-59910 | Relevant only for releases up to and including SAP NetWeaver 7.0 | |
| JAVA EE Server ( inte rnal ports) | ||||||
| Server Join Port | 5NN20 + x*5 | 50020
( server 0) | 50020-59995 | + | X = 0, 1, 2, 3, …15 (number of server) | |
| Server Debug Port | 5NN21 + x*5 | 50021
( server 0) | 50021-59996 | + | X = 0, 1, 2, 3, …15 (number of server) | |
| Central Services for Java ( Separate instan ce, default instance n umb er 01) | ||||||
| Enqueue Server | ||||||
| Enqueue Server Port | 32NN sapdpNN | 3201 | 3200-3299 | Provides locking services for AS Java NN = Instance number (00…99) enque/encni/port | ||
| Enq. Replication | 33NN sapgwNN | 3301 | 3300-3399 | Replication of enqueue data for high availability
NN = Instance number (00…99) Releases up to NW2004s enque/encni/repl_port. Relevant for releases up to and including SAP NetWeaver 7.0. | ||
| Enq. Replication | 5NN16 | 50116 | 50016, …, 59916 | Replication of enqueue data for high availability
NN = Instance number (00…99) enque/encni/repl_port Starting with NW2007 | ||
| Gateway | ||||||
| Gateway | 33NN sapgwNN | 3301 | 3300-3399 | Only relevant for releases SAP NetWeaver 7.1 and higher.
Ports used by SAP gateway for CPIC and RFC communication | ||
| Gateway | 48NN sapgwNNs | + | 4800 | 4800-4899 sapgw00ssapgw99s | + | SNC secured SAP gateway, used for CPIC and RFC communication, see SNC Users Guide for details, only encrypted communications. Please note, there is no related sapdpNNs (47xx) port |
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| Message Server | ||||||
| Message Server Port | 36NN | 3601 | 3600-3699 | NN = Instance number (00…99) rdisp/msserv | ||
| HTTP | 81NN | + | 8101 | 8100-8199 | ms/http_port_<n> | |
| HTTPS | 444NN | + | Not active | 44400-44499 | ms/https_port_<n> | |
| SAP NetWeaver AS Adminis trat ive Servic es | ||||||
| Host Control Service | ||||||
| SAPHostControl | 1128 | (+) | 1128 | 50013-59913 | + | SAP Landscape Host integration service |
| SAPHostControlS | 1129 | (+) | 1129 | 50013-59913 | + | NN = Instance number (00…99) |
| Start Service | ||||||
| Start Service | 5NN13
sapctrlNN | + | 50013 | 50013-59913 | + | NN = Instance number (00…99)
HTTP |
| Start Service | 5NN14
sapctrlsNN | + | 50014 | 50014-59914 | + | NN = Instance number (00…99)
HTTPS |
| Installation & upgrad e tools | ||||||
| SDM
as part of AS instance | 5NN17
5NN18 5NN19 | 50017
50018 50019 | + | Software deployment manager
Only CI (central Instance) NN = Instance number (00…99) Only NW04 and NW2004s | ||
| SL Controller | 5NN17
5NN18 5NN19 | 50017
50018 50019 | + | Used for patch and upgrade services
*17: Administrator Communication *18: GUI port *19: http port NN = Instance number (00…99) NW2007 | ||
| SAPinst
SAPinst on IBM AS400 iSeries | 21212
21213 59975 59976 | 21212
21213 59975 59976 | Free
Free | SAPinst on IBM iSeries needs these additional ports. | ||
| Upgrade
– Monitoring – UA-server (HTTP) – R3up-process – UA-server | 4238
4239 4240 4241 | 4238
4239 4240 4241 | Free | |||
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| Utilities | ||||||
| SAProuter | 3299 | + | 3299 | Free | ||
| SAP Web Dispatcher
– HTTP port – HTTPS port | chose freely chose freely | + | Free | Currently there is no installation procedure for SAP Web Dispatcher.
Typical port for HTTP is 80. Typical port for HTTPS is 443 | ||
| niping | 3298 | + | 3298 | Free | SAP network test program | |
| SAPlpd | 515
printer | + | 515 | Free | SAP printer spooler | |
| RDBMS (Database S ystems) | ||||||
| MS SQL | Chose freely | 1433 | 1024 – 5000 | + | Port can be statically or dynamically allocated. If dynamic, port 1434/udp is also required. | |
| Oracle listener | 1527 | 1527 | Free | configured in listener.ora and tnsnames.ora | ||
| IBM
DB6 (AIX) DB2 (OS/400) | 50000
4402 / as-edrsql | 50000
4402 | Free | Conflicts with SAP JAVA EE Engine with instance number 00.
See relevant documentation on how to change this DB6 default port. | ||
| liveCache (MaxDB)
(formerly know as SAP DB) Webtools | 7200 / sql30
7210 / sql6 7269/sapdni72 7270/sdbnissl76 7575 / SDB | +
+ + | 7200
7210 7269 7270 7575 | Free | In case of multiple MaxDB instances on one host the services are shared by all instances. | |
| NWDI (NetWeaver De velopment Infras truc ture) | ||||||
| DTR | 5NN15 | 50015 | Design Time Repository (NW2004s and later)
NN = Instance number (00…99) | |||
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| SAP NetWeaver AS Adminis trat ive Servic es | ||||||
| ITS (Internet Transac tion Server) | ||||||
| AGate | 39N0-39NM / sapavw00_Inst | 3900 – 390M | Free | N determined at setup so that range free
M = No agates –1 Inst = Name of ITS Instance | ||
| MM | 39N9 / sapavwmm_Inst | 3909 | Free | Mapping Manager | ||
| IGS (Internet Graphic s Server) as part of A pplication Serv er Instance | ||||||
| Multiplexer | 4 NN 00 | |||||
| Portwatcher (Clients) | 4 NN01-4NN 79 | |||||
| HTTP-ports | 4 NN80-4NN 99 | |||||
| XI (SAP Exchange Inf rastructure) | ||||||
| JMS/JDBC/File Adapter Server | 8200
(8201, … for multiple Adapter Installations on same host) | + | 8200
(Rules for this adapter not yet implemented) | Free | Port used for interactive browser access to configuration interface.
Adapter does not belong to an SAP Application Server system. It can be installed on a host with XI server, or standalone. Usually only one instance needed, because individual JMS/JDBC and File Adapter instances live inside one serve process. | |
| JMS Adapter | Chose freely | 8210 | Free | Port for incoming data from XI server. | ||
| JDBCAdapter | Chose freely | 8220 | Free | Port for incoming data from XI server. | ||
| File Adapter | Chose freely | 8230 | Free | Port for incoming data from XI server. | ||
| IPC (NW05 and CRM 5.0) (Internet Pri cing and Configura tor) | ||||||
| IPC Dispatcher | 4363 | + | 4363 | Free | Mobile client | |
| IPC Version 3.0 and 4. 0 (Internet Prici ng a nd Configurato r) | ||||||
| IPC Dispatcher | 4444 | + | 4444 | Free | Mobile client | |
| IPC data loader | 4445 | Not active | Free | |||
| IPC Server | 9999, 9998, … | 9999 | Free | Counting down from 9999 for each server process. | ||
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| TREX (Text Retrieval and Information Ext raction) | ||||||
| Name Server | 3NN01 | 30001 | 30001-39901 | NN = TREX Instance; available for TREX 6.1, TREX 7.0, TREX 7.1 | ||
| Pre Processor | 3NNx2 | 30002 | 30002-39992 | multiple servers possible x=server-index (0,1,2,…,9); available for TREX 6.1, TREX 7.0,
TREX 7.1 | ||
| Index Server | 3NNx3 | 30003 | 30003-39993 | multiple servers possible x=server-index (0,1,2,…,9); available for TREX 6.1, TREX 7.0,
TREX 7.1 | ||
| Queue Server | 3NNx4 | 30004 | 30004-39994 | multiple servers possible x=server-index (0,1,2,…,9); available for TREX 6.1, TREX 7.0,
TREX 7.1 | ||
| HTTP Server | 3NN05 | 30005 | 30005-39905 | available for TREX 6.1, TREX 7.0, TREX 7.1 | ||
| GRMG service ( Heartbeat ) | 3NN06 | 30006 | 30006-39906 | optional; available as of TREX 7.0 | ||
| RFC Server | 3NN07 | 30007 | 30007-39907 | Multithreaded RFC server with port 3 NN07 available as of TREX 7.0 | ||
| Cruiser | 3NNx8 | 30008 | 30008-39908 | multiple servers possible x=server-index (0,1,2,…,9); available as of TREX 7.1 | ||
| Alert Server | 3NN11 | 30011 | 30011–39911 | available as of TREX 7.0 | ||
| BackupServer | 3NN17 | 30017 | 30011-39917 | optional; available as of TREX 7.1 | ||
| MDM (Master Data M anagement) | ||||||
| Admin Console | 20003 | + | 20003 | Fixed | + | Communication between Admin Console application and MDM server |
| Server to Server | 20004 | 20004 | Fixed | + | Inter Server communication ( master/slave ) | |
| Admin Console | 20005 | + | 20005 | Fixed | + | Communication between Admin Console application and MDM server |
| Import Manager | 20006 | (+) | 20006 | Fixed | + | Communication between MDM Import
Manager Service and its clients |
| Syndicator Service | 20007 | (+) | 20007 | Fixed | + | Communication between MDM
Syndicator Service and its clients |
| Layout Server | 31596, 31597,
31604 | + | 31596,
31597, 31604 | Fixed | + | Communication for print publishing between MDM Layout Server and its clients |
| Layout Server Quark Express | 31602 | + | 31602 | Fixed | + | Communication for print publishing between MDM Layout Server and Quark Express plugin |
| Layout Server Adobe InDesign | 31603 | + | 31603 | Fixed | + | Communication for print publishing between MDM Layout Server and Adobe InDesign plugin |
| Layout Server | 31596 | + | 31596 | Fixed | + | Communication for print publishing between MDM Layout Server and its clients |
| MDM Server | 2000-2002 | + | 2000-2002 | 2000-9997 | 3 consecutive ports in this range are required per each repository | |
| Service | Port Number /
Service Name Rule | Default | Range ( min-max ) | Comment | ||
| TREX 6.0 (Text Retrie val and Informat ion Extraction) | ||||||
| Name Server | 8355 | 8355 | Free | |||
| Pre Processor | 8357 | 8357 | Free | |||
| Index Server | 8351 | 8351 | Free | |||
| Queue Server | 8352 | 8352 | Free | |||
| Http Server | 8353 | 8353 | Free | |||
| Monitoring (GRMG) | 8366 | 8366 | Free | Availability monitoring in CCMS | ||
| Content Server | ||||||
| Content Server | 1090 | + | 1090 | Free | ||
| Cache Server | 1095 | + | 1095 | Free | ||
| CRM | ||||||
| CSDM | 20201 | + | Free | Central Software deployment manager | ||
| Exchange Groupware Connector (DCOM) | 135 / DCE | DCOM uses port 135 for the Service Control Manager which allocates a free port for the application. | ||||
| Lotus Domino | ||||||
| – Connector
– Proxy | 62026 – 62029
62126 – 62129 | + | 62026–62029 62126-62129 | Free
Free | The range comprises 4 Instances xxx26 for instance 1 up to xxx29 for instance 4. | |
| PAW (Performance A ssessment Work ben ch of Knowled ge Warehouse) | ||||||
| PAW Communication Server | 1099 | + | 1099 | Free | Java RMI Server | |
| PAW Servlet Engine | 1089 | + | 1089 | Free | ||
| Business One | ||||||
| http | Free | + | 80 | Free | IIS, configurable port on client side | |
| ODBC (e.g. MSSQL) | Free | 1433 | Free | Port can be statically or dynamically allocated. If dynamic, port 1434/udp is also required. | ||
| DCOM | 135 / DCE | Connection to license server. DCOM uses port 135 for the Service Control Manager which allocates a free port for the application. | ||||
SAP相关产品:
SAP GRC权限合规检查系统(简称AMS-R系统)是SAP ERP应用企业进行权限合规检查、违规数据抓取和IT审计的理想工具。
AMS-V SAP License 资产优化管理系统产品:是应用于SAP系统权限风险控制及注册用户账号管理为目标的SAP软件资产精益化管理方案。
SAP 日志堡垒机安全管理系统(简称AMS-L系统)是一款面向SAP ERP 系统的网络安全管理工具,提供基于SAP系统用户业务行为的常态化监管,是对SAP现有日志体系的有效增强管理。
SAP 运维管理平台系统(简称AMS-Ops)旨在确保企业SAP应用系统健康、稳定运行的基础上,持续性的改进、优化,从而满足其业务发展需要的企业级SAP系统运维管理服务。
AMS SAP 商超订单统一管理系统以商超平台订单集中管理为核心,系统支持多平台、多店铺、全渠道系统采购订单、验收单、结算单等业务单据的统一管理;商超订单统一管理系统支持与 SAP ERP 系统的无缝衔接,在SAP ERP系统中自动生成销售订单、外向交货单,核对验收单、结算单等 SD 模块业务操作,有效的简化企业商超订单管理工作流程,保证订单数据处理的统一、准确、高效,实现跨系统、组织的协同管理,提升企业营销效率。
关于赛锐信息
河南赛锐信息科技有限公司(简称“赛锐信息”)是一家致力于SAP ERP系统应用的服务商,公司立足打造基于AMS产品套件的企业信息化解决方案,结合前沿技术追求最佳用户体验、企业信息化优秀解决方案和企业级产品应用的供应商。公司自主研发的AMS系列软件产品是国内首个用于SAP权限风险识别的增强系统,也是同行业用户精益化管理解决方案中最优的解决方案,作为用户管理、风险规避和信息审计的辅助工具,其有助于规范企业的管理行为,帮助建立合规的管控流程,有效提高企业IT资产投资回报率;AMS系列产品在各项技术指标上拥有完全的、独立的领先优势,可以满足市场竞争、技术许可和标准制定等方面的需要。
作者:SAP权限管理 QQ:2651000673
