Skip to end of metadata
Go to start of metadata

SuperADMIN and SuperSERVER present a very small TCP/IP "surface area" that also makes effective layer three firewalling simple to achieve. This makes it easy to configure stateful firewall rules to control ingress and egress for the network segment in which SuperADMIN and SuperSERVER are installed.

As shown here, most ports only need to be open for internal communication between components.

Ports that Must be Externally Accessible

The following ports are the only ports that must be accessible externally:

SuperWEB2
8080 (External end-user connections to Tomcat)
9001 (User Registration and Password Resets)

The user registration system was introduced in SuperSTAR 9.9 so you need to ensure that port 9001 is accessible if upgrading from an earlier version and you want to enable user registration. 

Ports that Must be Internally Accesible

The following ports need to be accessible on your internal network for communication between SuperADMIN, SuperSERVER, Metadata Server, as well as the client applications:

SuperADMINSuperSERVERMetadata ServerSuperWEB2

9000 (Configuration Server)

9232 (CORBA IIOP protocol)

8005 (CORBA communications)8009 (Tomcat Shutdown port)

9001 (User Registration and Password Resets)

   

9230 (CORBA IIOP)

   

9231 (Java RMI-JRMP protocol - services)

   

9234 (Java RMI-JRMP protocol - registry)

   

The configuration server was introduced in SuperSTAR 9.0, so you will need to ensure that port 9000 is accessible if upgrading from an earlier version.

Port Usage Overview

The following diagram shows the SuperSTAR Port Usage. If any of these ports are not available it is possible to configure the relevant application to use other ports. Please refer to the configuration guide of the relevant product.