Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Configuring Deep Security to allow Windows Network Load Balancing (NLB) traffic

    • Updated:
    • 17 Oct 2017
    • Product/Version:
    • Deep Security 10.0
    • Deep Security 10.1
    • Platform:
    • Windows 2012 Enterprise
Summary

Deep Security versions 10.0 U5 and 10.1 support the Windows Network Load Balancing (NLB). In order to allow NLB-related traffic, some firewall rules are required to be added.

Details
Public

To allow the necessary NLB traffic, allow the following rules:

NameAction TypePriorityDirectionFrame TypeProtocolSource IPSource PortDestination IPDestination Port
NLB protocol 886F FrameForce Allow0 - LowestIncomingOther:886FN/AAnyN/AAnyN/A
Outgoing TCP 49154 portForce Allow0 - LowestOutgoingIPTCPAnyAnyAny49154
Incoming TCP 49155 portForce Allow0 - LowestIncomingIPTCPAnyAnyAny49155
Incoming TCP 135 PortForce Allow0 - LowestIncomingIPTCPAnyAnyAny135
Incoming UDP 5355 source portForce Allow0 - LowestIncomingIPUDPAny5355AnyAny
Incoming UDP 5355 destination portForce Allow0 - LowestIncomingIPUDPAnyAnyAny5355
 
Some necessary network protocols (e.g. DHCP, DNS, ARP, etc.) are not listed in the table above. Make sure those protocols are allowed if they are needed.

To monitor if there is still any NLB-related traffic being blocked, turn on the Tap mode:

  1. Go to Computer > Settings.
  2. Select the Advanced tab.
  3. On the Network Engine Mode section, choose Tap.

    TAP mode

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1118512
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.