HiveManager on-prem udp 12222 closed

  • 1
  • Question
  • Updated 3 years ago
I have Hivemanager on-prem , managing branch router BR200-WP, tunnel up and running , I can update branch router etc. Now I close udp port 12222 and still able to update branch router ....? So what's that management on udp port 12222 is needed for , only register new devices ?
Photo of Irek Romaniuk

Irek Romaniuk

  • 26 Posts
  • 1 Reply Like

Posted 3 years ago

  • 1
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
By blocking UDP port 12222, you prohibit CAPWAP being used via UDP and HTTP fallback on port 80 via TCP will occur.

You can confirm this by running:
show capwap client
... at the CLI.
Photo of AJ Nurcombe

AJ Nurcombe

  • 11 Posts
  • 1 Reply Like

You can also force this over port 80 instead of 12222.

CLI:

no capwap client

capwap client transport HTTP

capwap client enable

save config

Photo of Irek Romaniuk

Irek Romaniuk

  • 26 Posts
  • 1 Reply Like
But I have ONLY port 12222 opened on VHM , using console on BR I can still see 'Server destination Port: 12222' and from VHM I can do i.e. diagnostic-> show version etc . My point is not to fix (this is lab only) , but understand how it works