Some administrative ports are required to configure your GitHub Enterprise Server instance and run certain features. Administrative ports are not required for basic application use by end users.
|8443||HTTPS||Secure web-based 管理控制台. Required for basic installation and configuration.|
|8080||HTTP||Plain-text web-based 管理控制台. Not required unless TLS is disabled manually.|
|122||SSH||Shell access for your GitHub Enterprise Server instance. Required to be open to incoming connections between all nodes in a high availability configuration. The default SSH port (22) is dedicated to Git and SSH application network traffic.|
|1194/UDP||VPN||Secure replication network tunnel in high availability configuration. Required to be open for communication between all nodes in the configuration.|
|123/UDP||NTP||Required for time protocol operation.|
|161/UDP||SNMP||Required for network monitoring protocol operation.|
Application ports for end users
Application ports provide web application and Git access for end users.
|443||HTTPS||Access to the web application and Git over HTTPS.|
|80||HTTP||Access to the web application. All requests are redirected to the HTTPS port if TLS is configured.|
|22||SSH||Access to Git over SSH. Supports clone, fetch, and push operations to public and private repositories.|
|9418||Git||Git protocol port supports clone and fetch operations to public repositories with unencrypted network communication. 如果在实例上启用了私有模式，则仅当您也启用了匿名 Git 读取访问时才需要打开此端口。 有关详细信息，请参阅“在企业中实施存储库管理策略”。|
警告：在负载均衡器上终止 HTTPS 连接时，从负载均衡器到 GitHub Enterprise Server 的请求也需要使用 HTTPS。 不支持降级到 HTTP 连接。
Email ports must be accessible directly or via relay for inbound email support for end users.
|25||SMTP||Support for SMTP with encryption (STARTTLS).|
GitHub Actions ports
GitHub Actions ports must be accessible for self-hosted runners to connect to your GitHub Enterprise Server instance. For more information, see "About self-hosted runners."
|443||HTTPS||Self-hosted runners connect to your GitHub Enterprise Server instance to receive job assignments and to download new versions of the runner application. Required if TLS is configured.|
|80||HTTP||Self-hosted runners connect to your GitHub Enterprise Server instance to receive job assignments and to download new versions of the runner application. Required if TLS is not configured.|
If you enable automatic access to GitHub.com actions, GitHub Actions will always search for an action on your GitHub Enterprise Server instance first, via these ports, before checking GitHub.com. For more information, see "Enabling automatic access to GitHub.com actions using GitHub Connect."