Forgot your password?
New user?
Document Actions
Ports being in use by the Red Hat Cluster software
This page describes which ports are in use by the Red Hat Cluster Software and how iptables should be configured to allow communication.
Usage of ports
| Port | Service | L4-Protocol | Relevance |
|---|---|---|---|
| 41966 | rgmanager/clurgmgrd | tcp | |
| 41967 | rgmanager/clurgmgrd | tcp | |
| 41968 | rgmanager/clurgmgrd | tcp | |
| 41969 | rgmanager/clurgmgrd | tcp | |
| 50006 | ccsd | tcp | |
| 50007 | ccsd | udp | |
| 50008 | ccsd | tcp | |
| 50009 | ccsd | tcp | |
| 21064 | dlm | tcp | |
| 6809 | cman | udp | RHEL4 and under |
| 5405 | openais | udp | RHEL5 and above |
| 14567 | gnbd | tcp |
Disabling iptables
Prerequesits are that iptables are already inplace and cluster traffic is rejected.
Use the following shell script for RHEL5. Add the gnbd Port to TCP_PORTS if in use. Also if rgmanager is not used remove the rgmanager ports from TCP_PORTS.
IPTABLES=/sbin/iptables CLUSTER_INTERFACE=eth0 TCP_PORTS="41966 41967 41968 41969 50006 50008 50009 21064" UPD_PORTS="50007 5405" echo -n "Applying iptables rules" for port in $TCP_PORTS; do $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p tcp -m tcp --sport $port -j ACCEPT $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p tcp -m tcp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p tcp -m tcp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p tcp -m tcp --sport $port -j ACCEPT done for port in $UPD_PORTS; do $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p udp -m udp --sport $port -j ACCEPT $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p udp -m udp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p udp -m udp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p udp -m udp --sport $port -j ACCEPT done echo "[OK]" echo -n "Saving new rules" (/etc/init.d/iptables save && \ echo "[OK]") || echo "[FAILED]"
Script for RHEL4:
IPTABLES=/sbin/iptables CLUSTER_INTERFACE=eth0 TCP_PORTS="41966 41967 41968 41969 50006 50008 50009 21064" UPD_PORTS="50007 6809" echo -n "Applying iptables rules" for port in $TCP_PORTS; do $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p tcp -m tcp --sport $port -j ACCEPT $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p tcp -m tcp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p tcp -m tcp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p tcp -m tcp --sport $port -j ACCEPT done for port in $UPD_PORTS; do $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p udp -m udp --sport $port -j ACCEPT $IPTABLES -I INPUT -i $CLUSTER_INTERFACE -p udp -m udp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p udp -m udp --dport $port -j ACCEPT $IPTABLES -I OUTPUT -o $CLUSTER_INTERFACE -p udp -m udp --sport $port -j ACCEPT done echo "[OK]" echo -n "Saving new rules" (/etc/init.d/iptables save && \ echo "[OK]") || echo "[FAILED]"
Follow @OpenSharedroot on twitter