The Mobile Admin client will communicate with the Mobile Admin server using XML over an HTTP (or HTTPS) connection. The Mobile Admin server listens on port 4054 by default.
Starting in Mobile Admin 4.1 port 4055 wil be used for HTTPS connections by default. You can configure Mobile Admin to use either HTTP, HTTPS or both.
Starting in Mobile Admin 4.2 port 4056 will be used by the Mobile Admin Proxy. This Proxy is used to route Telnet, SSH, VNC and RDP connections through the Mobile Admin server.
The Mobile Admin server will then communicate with the other servers that are managed using built in Windows functions for the most part. Almost all functions in Mobile Admin are done through either Windows Management Instrumentation (WMI) or Lightweight Directory Access Protocol (LDAP). The remaining features are managed through a direct TCP/IP connection to the server on an appropriate port (i.e. port 1352 for Domino by default)
Because built in Windows functions are used there are a large number of ports that can be used.
About 80% of the things that you can do in Mobile Admin are done through WMI. WMI works over DCOM when connecting to a remote server. The initial port it connects to is 135 where the DCOM Service Control Manager listens. DCOM by default is then free to use any port between 1024 and 65535.
All of the LDAP connections will go through ports 389 or 636
Domino management will go through port 1352 (by default) but can be configured to use other ports if needed.
Oracle management will go through port 1521 (by default) but can be configured to use other ports if needed.
Microsoft SQL will use ports 1433 and 1434
iLO will use port 443
VMWare will use ports 443 and 902
If you are looking to manage computers in a different network location than the Mobile Admin server there are a couple of options available.
Because DCOM can use such a wide variety of ports many people prefer to restrict the ports that it can use. Information on how to restrict those ports can be found in this MSDN article:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dndcom/html/msdn_dcomfirewall.asp
Instead of restricting the ports many users prefer instead to install Mobile Admin where there is not a firewall between the Mobile Admin server and the computers that are being managed (and/or to use more than one Mobile Admin servers). In that situation only a single port would need to be opened for the initial connection to reach the Mobile Admin server.
APPLIES TO
Mobile Admin