Required ports open for Katello client

We have a content host in the DMZ that we want to update from within the LAN.

What ports and what directionality do we need to have open for minimal update application?

I have seen this post from 2015, which refers to Katello 2.x and to an image that is no longer available.

So I thought I’d ask for an update? Is it still just 5647 and 8443?


5647 – used for qoferd traffic when doing remote actions not via REX
8443 – used for content, talking back to main server

If you are using remote execution you’ll need SSH port open as well. If you don’t use goferd for remote install/update actions then you won’t need 5647.

RedHat documentation provides a full list of port requirements :