Deployment Requirements
This section explains the deployment requirements for the RN150 Virtual Appliance.
The RN150 is a Debian/GNU Linux Virtual Appliance. It is deployed on either VMware ESXi (6.5 or later) or Microsoft Hyper-V (Server 2019 or later).
Resource Requirements
The following are the default resource requirements.
| Requirement | Description |
|---|---|
| RAM | 8 GB of RAM |
| vCPUs | 2 vCPUs |
| Hard drive space | 50 GB Hard drive (Thin Provisioned) |
| Internet access (TCP Port 443) | TCP Port 443 outbound to the following: orchestration.riscnetworks.com (34.192.184.110, 34.192.195.90) initial.riscnetworks.com (34.192.43.78, 34.192.198.28) dataup.riscnetworks.com (34.192.12.37, 34.192.197.132) app1.riscnetworks.com (34.192.198.73) Backup & Growth (34.192.99.153, 34.192.185.36) |
| Internet access (UDP Port 123) | UDP Port 123 outbound to the following: ntp.riscnetworks.com (3.231.5.12, 18.204.38.15, 52.70.0.210) If this requirement cannot be met, due to, for example, requiring a proxy, a local NTP server can be specified instead, or NTP can be disabled which will automatically enable hypervisor host timesync. See Appliance NTP Support for details. |
Communication Protocols
The RN150 uses the following protocols (ports) to access the network. These protocols/ports should be permitted between the RN150 and all local resources (servers, routers, etc) to be included in the discovery.
| Protocol | Port | Source | Destination | Usage |
|---|---|---|---|---|
| TCP | 443 | RN150 | Internet | For communication from the RN150 to the RISC Networks Cloud Orchestration layer |
| TCP | 443 | RN150 | FlexDeploy | For uploading inventory/performance data and synchronizing licensing This communication protocol is not applicable to SaaS engagements. |
| UDP | 123 | RN150 | Internet | For synchronizing appliance time via NTP |
| ICMP | — | RN150 | Local Networks | By the RN150 for base discovery for available devices |
| TCP | 135 | RN150 | Local Networks | By the RN150 to obtain WMI information from Windows hosts discovered |
| TCP | 1025-5000 | RN150 | Local Networks | RPC Dynamic Port Allocation used for WMI communication (Default for Windows Server 2003 / XP and older) |
| TCP | 49152-65535 | RN150 | Local Networks | RPC Dynamic Port Allocation used for WMI communication (Default for Windows Server 2008 / Vista and newer) |
| TCP | 80 | RN150 | Local Networks | By the RN150 to obtain HTTP |
| UDP | 161 | RN150 | Local Networks | Used for gathering SNMP information from devices on the Network |
| TCP | 443 | RN150 | Local Networks | Used for gathering VMware guest information directly from vCenter |
| TCP | 22 | RN150 | Local Networks | By the RN150 to collect from Linux/UNIX servers over the SSH protocol |
| TCP | * | RN150 | Local Networks | Collection from Linux/UNIX servers via SSH user supplied non-standard TCP ports |
| TCP | 445 | RN150 | Local Networks | SMB over TCP/IP used for application socket collection |
| TCP | 139 | RN150 | Local Networks | SMB over NetBIOS used for application socket collection |
| TCP | 8443 | RN150 | Local Networks | Used for discovering Tomcat and Cisco UC servers* |
| TCP | 62078 | RN150 | Local Networks | Used for discovering Apple products (iPhone) – iTunes sync over air port |
| TCP | 22 | RN150 | Local Networks | For command line discovery of Cisco Switches and Routers |
| TCP | 1433** | RN150 | Local Networks | For MSSQL database collection only |
| TCP | 1521** | RN150 | Local Networks | For Oracle database collection only |
| TCP | 3306** | RN150 | Local Networks | For MySQL database collection only |
note
Double asterisks (**) means that port or other non-standard ports as required for database connectivity.
Required Credentials and Parameters
The following are required credentials and parameters:
| Credential/Parameter | Description |
|---|---|
| IP Subnets | IP Subnets that the client would like to scan These can be added at the time the RN150 is deployed. Subnets can be manually entered or a routing table can be used to populate the list via SNMP |
| Administrators | Windows Domain Administrator or Local Administrator (workgroup servers only) credentials Needed for WMI access |
| SSH User Account | SSH user account with sudo privileges Password or key-based authentication For more information, see SSH Collection Module. |
| SNMP Read-Only Credentials | Needed for Linux/Unix Servers where not using SSH and should include the following MIBs: Host-Resources-MIB UCD-MIB IF-MIB TCP-MIB UCD-DISKIO-MIB Needed for Network Devices Supports v1/v2/v3 |
| VMware Credentials | Read-only access to vCenter or root access to ESX hosts directly |
| Database credentials | IP/SIDs of database hosts For more information, see Database Module. |