This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Application ms-update on WSUS 6.2 and later

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Application ms-update on WSUS 6.2 and later

Go to solution
LCMember2041
L1 Bithead

‎11-25-2014 10:33 AM

Why application ms-upate usage only port 80/443 when WSUS 6.2 an later usage port 8530/8531 (Step 3: Configure WSUS) ?

Robert Ogonowski

Labels:
0 Likes Likes
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
HULK
L7 Applicator
In response to LCMember2041

‎11-25-2014 11:09 AM

Hello Robert,

This services/port are already added with Application MS-SMS. So, you have to allow ms-sms application on the security profile in order to allow/identify WSUS 6.2 traffic.

Description: System Center Configuration Manager, formerly Systems Management Server (SMS), is a systems management software product by Microsoft for managing large groups of Windows-based computer systems. SMS provides remote control, patch management, software distribution, and hardware and software inventory.

MS-SMS.jpg

Hope this helps.

Thanks

View solution in original post

9 REPLIES 9

Go to solution
HULK
L7 Applicator

‎11-25-2014 10:47 AM

Hello Robert,

You should ask this to Microsoft Smiley Happy, they will guide you towards the right direction.

Thanks

0 Likes Likes

Go to solution
LCMember2041
L1 Bithead
In response to HULK

‎11-25-2014 11:01 AM

Smiley Happy but Palo may add this port to application ms-update

Robert

0 Likes Likes

Go to solution
HULK
L7 Applicator
In response to LCMember2041

‎11-25-2014 11:09 AM

Hello Robert,

This services/port are already added with Application MS-SMS. So, you have to allow ms-sms application on the security profile in order to allow/identify WSUS 6.2 traffic.

Description: System Center Configuration Manager, formerly Systems Management Server (SMS), is a systems management software product by Microsoft for managing large groups of Windows-based computer systems. SMS provides remote control, patch management, software distribution, and hardware and software inventory.

MS-SMS.jpg

Hope this helps.

Thanks

Go to solution
LCMember2041
L1 Bithead
In response to HULK

‎11-25-2014 11:31 AM

Thanks.

How did you find it ?

Robert

Go to solution
LCMember2041
L1 Bithead
In response to LCMember2041

‎11-25-2014 11:36 AM

Hmmm, but palo probably wrong recognize. Log is: ms-update on port 8530

Robert

0 Likes Likes

Go to solution
HULK
L7 Applicator
In response to LCMember2041

‎11-25-2014 12:59 PM

Hello Roberto,

For any existing application signature, you may look into this link ( search for existing application or port number): Application Research Center

Thanks

0 Likes Likes

Go to solution
LCMember2041
L1 Bithead
In response to HULK

‎11-25-2014 02:04 PM

I did not know that you can browse the port Smiley Happy Thanks

Robert

Go to solution
sgoethals
L2 Linker
In response to HULK

‎06-18-2018 11:01 AM

It appears ports 8530 and 8531 have been removed again from app-id ms-sms as of 6/1/2018.

 

I contacted support and they confirmed this.  Unfortunately, they could not provide a reason why.  I ended up having to perform an application override for ms-sms to use ports 8530 and 8531 for my Windows Updates to work again. 

0 Likes Likes

Go to solution
ymiyashita
L5 Sessionator
In response to sgoethals

‎08-15-2018 12:04 AM

It was fixed in content version 8036.

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2022 - Palo Alto Networks