DSX Firewall Requirements
| Source | Port | Protocol | Service | NIC Roles | DSX to: | |||
|---|---|---|---|---|---|---|---|---|
| Mgmt | Data | Portal | Anvil | Object/Cloud | ||||
|
Any |
22 |
TCP |
Secure Shell for Management Console |
✓ |
|
|
✓ |
|
|
Any |
80 |
TCP |
HTTP (object access) |
|
✓ |
|
|
✓ |
|
Any |
111 |
TCP/UDP |
Storage, RPC (rpcbind) |
|
✓ |
✓ |
✓ |
|
|
NTP |
123 |
UDP |
NTP, Network Time Protocol |
✓ |
|
|
✓ |
|
|
Clients |
137-139 |
TCP |
SMB data access (NetBIOS) |
|
✓ |
✓ |
|
|
|
Any |
161 |
TCP/UDP |
SNMP |
✓ |
✓ |
✓ |
|
|
|
Clients |
445 |
TCP |
SMB data access |
|
✓ |
✓ |
|
|
|
NFS client |
662 |
TCP/UDP |
NFS - statd |
|
✓ |
✓ |
|
|
|
NFS |
2049 |
TCP |
NFS |
|
✓ |
✓ |
✓ |
|
|
Anvil |
3049 |
TCP/UDP |
HS Store |
|
✓ |
|
|
|
|
DSX |
4379 |
TCP/UDP |
SMB High Availability, CTDB |
|
✓ |
✓ |
✓ |
|
|
Anvil |
4505-4506 |
TCP |
Node management (salt) |
|
✓ |
|
✓ |
|
|
Anvil |
8443 |
TCP |
HTTPS |
|
✓ |
|
✓ |
✓ |
|
Anvil |
9093 |
TCP |
Services monitoring, Kafka |
|
✓ |
|
✓ |
|
|
DSX |
9094 |
TCP |
Data Mover Engine |
|
✓ |
|
✓ |
|
|
Anvil |
9095-9096 |
TCP |
Data Mover Engine |
|
✓ |
|
|
|
|
Anvil |
9098 |
TCP |
Cloud mobility |
|
✓ |
|
|
|
|
Anvil |
9099 |
TCP/UDP |
Cloud mobility, HMDB |
|
✓ |
|
✓ |
|
|
Anvil |
9298 |
TCP |
HMDB |
|
✓ |
|
✓ |
|
|
Anvil |
9299 |
TCP |
Data Manager |
|
|
|
✓ |
|
|
Anvil |
9399 |
TCP |
KMS proxy |
|
|
|
✓ |
|
|
NFS |
20048 |
TCP/UDP |
NFS - Mount |
|
✓ |
✓ |
✓ |
|
|
NFS |
20490-20491 |
TCP |
NFS |
|
✓ |
✓ |
✓ |
|
|
Anvil |
30048 |
TCP |
HS Store |
|
✓ |
|
|
|
|
NFS |
32803 |
TCP/UDP |
NFS File Locking |
|
✓ |
✓ |
✓ |
|