When I ask nmap what is open on my PVE host, it tells me:
	
	
	
		
22 and 8007 I understand (8007 because PBS is also running on that system)
But what I do not understand is that 8006 is not reported by nmap (more an nmap thing, I guess), while it is there that we can access the admin GUI:
	
	
	
		
What I would like to know is:
				
			
		Code:
	
	PORT     STATE SERVICE
22/tcp   open  ssh
111/tcp  open  rpcbind
3128/tcp open  squid-http
8007/tcp open  ajp12But what I do not understand is that 8006 is not reported by nmap (more an nmap thing, I guess), while it is there that we can access the admin GUI:
		Code:
	
	gerben@hermione% nc -v -z pve.rna.nl 8006       
Connection to pve.rna.nl port 8006 [tcp/*] succeeded!- Why is TCP 111 open (according to the documentation, it should be only-UDP 111) and what is 111 for anyway? Do I need it with a single PVE machine?
- 3128 is a SPICE proxy. My guess is this is needed for the Shell of the PVE host and Console of the VM clients from the Web GUI. Correct?
 
	 
	 
 
		 
 
		