Skip to content

Commit 64f2552

Browse files
noctariusnoctarius
committed
Added port ranges for storage nodes
1 parent adc4ef5 commit 64f2552

File tree

2 files changed

+23
-22
lines changed

2 files changed

+23
-22
lines changed

snippets/control-plane-network-port-table.md

+21-21
Original file line numberDiff line numberDiff line change
@@ -1,21 +1,21 @@
1-
| Service | Direction | Source / Target Network | Port | Protocol(s) |
2-
|-----------------------------|-----------|-------------------------|-------|-------------|
3-
| Cluster API | ingress | storage, control, admin | 80 | TCP |
4-
| SSH | ingress | storage, control, admin | 22 | TCP |
5-
| Graylog | ingress | storage, control | 12201 | TCP / UDP |
6-
| Graylog | ingress | storage, control | 12202 | TCP |
7-
| Graylog | ingress | storage, control | 13201 | TCP |
8-
| Graylog | ingress | storage, control | 13202 | TCP |
9-
| Docker Daemon Remote Access | ingress | storage, control | 2375 | TCP |
10-
| Docker Swarm Remote Access | ingress | storage, control | 2377 | TCP |
11-
| Docker Overlay Network | ingress | storage, control | 4789 | UDP |
12-
| Docker Network Discovery | ingress | storage, control | 7946 | TCP / UDP |
13-
| FoundationDB | ingress | storage, control | 4500 | TCP |
14-
| Prometheus | ingress | storage, control | 9100 | TCP |
15-
| | | | | |
16-
| Cluster Control | egress | storage, control | 8080 | TCP |
17-
| spdk-http-proxy | egress | storage, control | 5000 | TCP |
18-
| Docker Daemon Remote Access | egress | storage, control | 2375 | TCP |
19-
| Docker Swarm Remote Access | egress | storage, control | 2377 | TCP |
20-
| Docker Overlay Network | egress | storage, control | 4789 | UDP |
21-
| Docker Network Discovery | egress | storage, control | 7946 | TCP / UDP |
1+
| Service | Direction | Source / Target Network | Port | Protocol(s) |
2+
|-----------------------------|-----------|-------------------------|-----------|-------------|
3+
| Cluster API | ingress | storage, control, admin | 80 | TCP |
4+
| SSH | ingress | storage, control, admin | 22 | TCP |
5+
| Graylog | ingress | storage, control | 12201 | TCP / UDP |
6+
| Graylog | ingress | storage, control | 12202 | TCP |
7+
| Graylog | ingress | storage, control | 13201 | TCP |
8+
| Graylog | ingress | storage, control | 13202 | TCP |
9+
| Docker Daemon Remote Access | ingress | storage, control | 2375 | TCP |
10+
| Docker Swarm Remote Access | ingress | storage, control | 2377 | TCP |
11+
| Docker Overlay Network | ingress | storage, control | 4789 | UDP |
12+
| Docker Network Discovery | ingress | storage, control | 7946 | TCP / UDP |
13+
| FoundationDB | ingress | storage, control | 4500 | TCP |
14+
| Prometheus | ingress | storage, control | 9100 | TCP |
15+
| | | | | |
16+
| Cluster Control | egress | storage, control | 8080-8890 | TCP |
17+
| spdk-http-proxy | egress | storage, control | 5000 | TCP |
18+
| Docker Daemon Remote Access | egress | storage, control | 2375 | TCP |
19+
| Docker Swarm Remote Access | egress | storage, control | 2377 | TCP |
20+
| Docker Overlay Network | egress | storage, control | 4789 | UDP |
21+
| Docker Network Discovery | egress | storage, control | 7946 | TCP / UDP |

snippets/install-storage-plane-bare-metal.md

+2-1
Original file line numberDiff line numberDiff line change
@@ -42,7 +42,8 @@ sudo iptables -A SIMPLYBLOCK -p udp --dport 4789 -s 192.168.10.0/24,10.10.10.0/2
4242
sudo iptables -A SIMPLYBLOCK -p tcp --dport 5000 -s 192.168.10.0/24 -j RETURN
4343
sudo iptables -A SIMPLYBLOCK -p tcp --dport 7946 -s 192.168.10.0/24,10.10.10.0/24 -j RETURN
4444
sudo iptables -A SIMPLYBLOCK -p udp --dport 7946 -s 192.168.10.0/24,10.10.10.0/24 -j RETURN
45-
sudo iptables -A SIMPLYBLOCK -p tcp --dport 8080 -s 192.168.10.0/24,10.10.10.0/24 -j RETURN
45+
sudo iptables -A SIMPLYBLOCK -p tcp --dport 8080:8890 -s 192.168.10.0/24,10.10.10.0/24 -j RETURN
46+
sudo iptables -A SIMPLYBLOCK -p tcp --dport 9090-9900 -s 192.168.10.0/24,10.10.10.0/24 -j RETURN
4647
sudo iptables -A SIMPLYBLOCK -s 0.0.0.0/0 -j DROP
4748
```
4849

0 commit comments

Comments
 (0)