Default Ports
STAGE uses services that are assigned to use ports for inter-server communication channels at runtime. Once a port has been assigned for use by a service on a server, that port cannot be used by another service when communicating to that server.
The Riedel Software Manager has specific requirements for the ports that must be open during software deployment, installation, and maintenance. See chapter Deployment Ports of the Riedel Software Manager.
Typical Network Architecture with a Virtual SmartPanel Connected to the World Wide Web
The following network diagrams are provided to show device and port usage throughout the network at a system level when a Virtual SmartPanel is used offsite, including the typically-required firewalls. In this scenario, the Virtual SmartPanel uses a mobile-phone data network to communicate through the World Wide Web to STAGE. Your actual network architecture in practice will vary.
For more information about TURN and STUN servers, see chapter STAGE_ Riedel STAGE™ & Virtual SmartPanel® – How to Implement STUN and TURN. For more specific details about the network architecture, see chapter Network Architecture.
With TURN Servers
With STUN Servers
End User Access
Internal Control Network Access
End User Browser/Mobile App <> STAGE Cluster (bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
HTTP | HTTP | 80 | TCP |
HTTPS | HTTPS | 443 | TCP |
Cockpit | Cockpit UI access | 9090 | TCP |
Metric/Log | Metrics and Logging access | Configurable | TCP |
End User Browser/Mobile App <> WebRTC Gateway (bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
WebRTC Ports | WebRTC Traffic | 15000 to 65535 | UDP |
STUN / TURN | STUN | 3478 | UDP |
TURN | TURN | Configurable | TCP |
TURN Relay Ports | TURN Relay Ports | Configurable | UDP |
External Network Access
End User Browser/Mobile App <> STAGE External Nodes (bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
HTTP | HTTP | 80 | TCP |
HTTPS | HTTPS | 443 | TCP |
End User Browser/Mobile App <> WebRTC TURN Relay (bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
STUN | STUN | 3478 | UDP |
TURN | TURN | Configurable | TCP |
TURN Relay Ports | TURN Relay Ports | Configurable | UDP |
System Services
STAGE Cluster <> STAGE Cluster (Both Internal & External Nodes, bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
NTP | NTP | 123 | UDP |
DNS | DNS | 53 | TCP and UDP |
SSH | Secured Shell (SSH) | 22 | TCP |
HTTP | HTTP | 80 | TCP |
HTTPS | HTTPS | 443 | TCP |
Nomad HTTP API | Nomad HTTP API - This is used by clients and servers to serve the HTTP API. | 4646 | TCP |
Nomad RPC | Nomad - Internal RPC communication between client agents and servers, and for inter-server traffic. | 4647 | TCP |
Nomad Serf WAN | Nomad - Used by servers to gossip both over the LAN and WAN to other servers. | 4648 | TCP and UDP |
Consul API | Consul API | 8500 | TCP |
Riedel Software Manager | Riedel Software Manager API | 9900 | TCP and UDP |
Consul DNS | Inter-Node Consul DNS | 8600 | TCP and UDP |
Consul HTTP | Inter-Node Consul HTTP | 8500 | TCP |
Consul HTTP(S) | Inter-Node Consul HTTP(S) | 8501 | TCP |
Consul gRPC | Inter-Node Consul gRPC | 8502 | TCP |
Consul gRPC TLS | Inter-Node Consul gRPC with TLS | 8503 | TCP |
Consul Server RPC | Inter-Node Consul internal communication with servers | 8300 | TCP |
Consul LAN Serf | The Serf local area network port | 8301 | TCP and UDP |
Consul WAN Serf | The Serf wide area network port | 8302 | TCP and UDP |
Vert.X | Event Bus | 20000- | TCP |
Hazelcast | Cluster Management | 20000- | TCP |
STAGE Cluster <> Artist 1024 Media SIC (Media 1/2, bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
LUI | Control data for key information and state. | 6060 | TCP |
STAGE Cluster <> Artist 1024 Control NIC (Control, bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
Artist Configuration | Artist Configuration | 6060 | TCP |
Registration | HTTP/HTTPS | 80/443 (Configurable) | TCP |
STAGE Cluster <> WebRTC Gateway (bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
gRPC Control Port | gRPC Control Port | 50051 | TCP |
Registration | HTTP/HTTPS | 80/443 (Configurable) | TCP |
WebRTC Gateway <> Artist 1024 Media SIC (Media 1/2, bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
AES67/2110 | Media flows between AES67 SIC and | 5004 to 5280 | UDP |
WebRTC Gateway <> WebRTC TURN Relay (bi-directional)
NAME | PURPOSE | PORT/s | TCP or UDP |
TURN | TURN | Configurable | TCP |
TURN Relay Ports | TURN Relay Ports | Configurable | UDP |
STAGE Cluster <> Active Directory (both Internal & External Nodes)
NAME | PURPOSE | PORT/s | TCP or UDP |
Active Directory | User Data Sync | 389 / 636 (default LDAP / LDAPS port, configurable) | TCP |