Port Requirements
Tenable Nessus port requirements include Tenable Nessus Manager, Tenable Nessus Professional, Tenable Nessus Expert, Tenable Nessus Essentials, Tenable Nessus scanners, and Tenable Nessus cluster node-specific requirements and Tenable Nessus Agent-specific requirements.
Tenable Nessus Manager, Tenable Nessus Professional, Tenable Nessus Expert, Tenable Nessus Essentials, Tenable Nessus Scanners, and Tenable Nessus Cluster Nodes
Your Tenable Nessus instances require access to specific ports for inbound and outbound traffic.
Inbound Traffic
You must allow inbound traffic to the following ports.
| Port | Traffic |
|---|---|
| TCP 8834 |
Accessing the Tenable Nessus interface. Communicating with Tenable Security Center. Interacting with the API. |
Outbound Traffic
You must allow outbound traffic to the following ports.
| Port | Traffic |
|---|---|
| TCP 25 |
Sending SMTP email notifications. |
| TCP 443 |
Communicating with Tenable Vulnerability Management (sensor.cloud.tenable.com or sensor.cloud.tenablecloud.cn). Communicating with the plugins.nessus.org server for plugin updates. |
| UDP 53 |
Performing DNS resolution. |
Tenable Nessus Agents
Your Tenable Nessus Agents require access to specific ports for outbound traffic.
Outbound Traffic
You must allow outbound traffic to the following ports.
| Port | Traffic |
|---|---|
| TCP 443 |
Communicating with Tenable Vulnerability Management. |
| TCP 8834 |
Communicating with Tenable Nessus Manager. Note: The default Tenable Nessus Manager port is TCP 8834. However, this port is configurable and may be different for your organization. |
| UDP 53 |
Performing DNS resolution. |
Note: Operating system installation commands, such as dnf install, may require other connections besides Tenable Vulnerability Management or Tenable Nessus Manager. Consult your operating system administrator for more information.