Philips Healthcare Informatics
Network Traffic Definitions for
Support and Archiving
iSite PACS 3.x/4.x
Network Traffic Definitions for Support and
Archiving
iSite PACS 3.x/4.x
CREF4.09-149
2011 Mar 16
Philips Healthcare is part of
Royal Philips Electronics www.medical.philips.com [email protected]
North America
Philips Healthcare Informatics 4100 East Third Ave., Suite 101 Foster City, CA 94404
USA
Europe
Philips Medical Systems Nederland B.V. PMS Quality & Regulatory Affairs Europe Veenpluis 4-6
5684 PC Best The Netherlands
Copyright © 2011 Koninklijke Philips Electronics N.V.
All rights reserved. iSite and iSyntax are registered trademarks of Koninklijke Philips Electronics N.V.
CREF4.09-149 – 2011 Mar 16 Page i of i
Table of Contents
Introduction ... 1
1
Overview ... 2
2
iSite PACS Network Traffic ... 3
2.1
Bidirectional Traffic ... 3
2.2
iSite to Philips Support ... 3
2.3
Philips Support to iSite ... 4
2.4
iSite to Philips Datacenter ... 4
2.5
Client Port Requirements ... 5
Network Traffic Definitions for Support and Archiving
CREF4.09-149 – 2011 Mar 16 Page 1 of 5
Introduction
The purpose of this document is to communicate information associated with the
Network Traffic Definitions for Support and Archiving
CREF4.09-149 – 2011 Mar 16 Page 2 of 5
1 Overview
Network Traffic Definitions for Support and Archiving
CREF4.09-149 – 2011 Mar 16 Page 3 of 5
2
iSite PACS Network Traffic
Philips iSite PACS is supported remotely over VPN connections which terminate at the
customer HCF (Health Care Facility) on a Philips-provided VPN device. Typically the
decrypted traffic is passed on to a customer-managed firewall for inspection, then on to the
iSite servers through the HCF network.
Definitions of the Philips Support subnets are available upon request through iSite CARE..
2.1
Bidirectional Traffic
The following table defines the required ports that need to be open in either direction
between the iSite server subnet and the Philips Support Network.
Service Port Protocol Source1 Destination2 Description
FTP 21 TCP Bidirectional Bidirectional File Transfer
SSH2 22 TCP Bidirectional Bidirectional Cisco Remote Management
DNS 53 TCP/UDP Bidirectional Bidirectional Domain Name Resolution
HTTP 80 TCP Bidirectional Bidirectional Antivirus Updates (Alternate)
HTTPS 443 TCP Bidirectional Bidirectional Application Access and ePO Agent to Server
Communication
CIFS 139 TCP Bidirectional Bidirectional Patch Scanning and Installation
2.2
iSite to Philips Support
The following table defines required ports from the iSite subnet to Philips Support Network.
Service Port Protocol Source Destination Description
SMTP 25 TCP iSite Philips Support Heartbeat System Health Monitoring
TACACS+ 49 TCP/UDP iSite Philips Support Cisco AAA Protocol
CIFS 138 UDP iSite Philips Support Patch Scanning and Installation
Syslog 514 UDP iSite Philips Support Device Logging
OS Patch
3121 TCP iSite Philips Support Patch Scanning and Installation
ePO 8080 TCP iSite Philips Support Antivirus Updates
ePo 8443 TCP iSite Philips Support Antivirus Updates
ePO 8444 TCP iSite Philips Support Antivirus Updates
Cisco CNS 11011 TCP iSite Philips Support Cisco Configuration and Image
Management
Cisco CNS 11012 TCP iSite Philips Support Cisco Configuration and Image
Management
Network Traffic Definitions for Support and Archiving
CREF4.09-149 – 2011 Mar 16 Page 4 of 5
2.3
Philips Support to iSite
The following table defines the required ports from Philips Support network to the iSite
subnet.
Service Port Protocol Source Destination Description
Telnet 23 TCP Philips Support iSite Cisco Remote Management (Alternate)
DICOM 104 TCP Philips Support iSite Testing DICOM
DICOM 107 TCP Philips Support iSite Testing DICOM
OS Patch
CIFS
135 TCP Philips Support iSite Patch Scanning and Installation
SNMP 161 UDP Philips Support iSite Cisco Remote Monitoring
LDAP 389 TCP Philips Support iSite Directory Services
CIFS 445 TCP Philips Support iSite Patch Scanning and Installation
LDAP SSL 636 TCP Philips Support iSite Directory Access (Secure)
VMWare 902 TCP/UDP Philips Support iSite Vmware Console Access
VMWare 903 TCP Philips Support iSite Vmware Console Access
IBM RCM 2068 TCP Philips Support iSite Remote Console Manager Terminal Session
IBM RCM 3211 TCP/UDP Philips Support iSite Remote Console Manager
RDP 3389 TCP Philips Support iSite Microsoft Terminal Services
IBM RCM 3900 TCP Philips Support iSite Remote Console ‐ IBM Integrated
Management Module (IMM)
OS Patch 5120 TCP Philips Support iSite Patch Scanning and Installation
VNC 5800 TCP Philips Support iSite Remote Server Access (Alternate)
VNC 5900 TCP Philips Support iSite Remote Server Access (Alternate)
VMWare 5989 TCP Philips Support iSite Vmware CIM Client to Server
Corba 6464 TCP Philips Support iSite iSite Client Testing
Corba SSL 7575 TCP Philips Support iSite iSite Client Testing (Secure)
ePO 8081 TCP Philips Support iSite Antivirus Updates
ePO 8082 TCP Philips Support iSite Antivirus Updates
IBM RCM 8192 TCP Philips Support iSite Additional Remote Console Manager
Terminal Session
ePO 8801 TCP Philips Support iSite Antivirus Updates
2.4
iSite to Philips Datacenter
Network Traffic Definitions for Support and Archiving
CREF4.09-149 – 2011 Mar 16 Page 5 of 5
Service Port Protocol Source Destination Description
TSM 1500 TCP iSite Philips Datacenter Image Archiving and Database Backups
2.5
Client Port Requirements
The following table defines the required ports that iSite client needs for normal operations.
Service Port Protocol Source Destination Description
HTTP 80 TCP Customer iSite iSite Client
HTTPS 443 TCP Customer iSite Secure iSite Client
Corba 6464 TCP Customer iSite Corba
Corba SSL 7575 TCP Customer iSite Secure Corba
2.6
iSite server to server Port Requirements
All ports need to be open between iSite servers.
Service Port Protocol Source Destination Description
Any IP IP iSite iSite No packet filtering between iSite Servers on
