When running Threat Insight and/or ADP on the Grid, to download the latest module updates and whitelist updates or ADP updates , the Grid Master needs to resolve and access https://ts.infoblox.com on tcp-443. You may need to configure the proxy settings in the Grid and you may need to disable TLS inspection on the proxy.

NIOS listens on TCP-8765 for SAML.

Full list here.

• Grid Connection From all members to GM/GMC and vice-versa. UDP 2114 & UDP 1194.
• Reporting All members of the Grid need to be able to talk to port TCP 9997 on the reporting server.
• NTP GM/GMC should access NTP servers on UDP 123. Other members sync to the active GM. If you want members to configure directly to external NTP source, configure accordingly.
• DNS All members should have access to DNS recursion unless the Grid is locked down.
• Access System admins should access GM/GMC on TCP 443 (HTTPS).
• Access System admins should access all members on TCP 22 (SSH).
• Syslog should have access to UDP 514 to the syslog server.
• Email GM/GMC should have access to TCP 25 to the email server.
• Monitoring All members should have access to UDP 162 on SNMP monitoring server.
• Monitoring SNMP monitoring server should have access to all members on UDP 161.