Sterling B2B Integrator Network Flow Graph
This page describes the requirements for providing a network flow map or port details.
In the OpenShift container environments there are multiple ways to configure the networking stack and depending on the configuration some of the resources like NetworkPolicies can be enforced differently.
Important: Sterling B2B Integrator
limits the number of exposed ports and clearly documents them for client network
management. Exposing more ports than necessary or not clearly documenting these
ports runs the risk of crossing a client's network security team.
A network administrators can refer the following network map to properly secure their
cluster and the workloads on the cluster:
Note: Below network map is based on the default
out of the box port configurations only.
| From | To | Port | Property | Protocol | Function |
|---|---|---|---|---|---|
| Ingress controller | ASI pod | 50000 | setupCfg.basePort | HTTP | Standard communication from Ingress controller to ASI Pod |
| Ingress controller | ASI front end service - HTTP | 35000 | asi.frontendService.ports.http | HTTP | Standard communication from Ingress controller to ASI front end service |
| Ingress controller | ASI front end service - HTTPs | 35001 | asi.frontendService.ports.https | HTTPS | Standard communication from Ingress controller to ASI front end service |
| Ingress controller | ASI front end service - websevices | 35002 | asi.frontendService.ports.soa | HTTP | Standard communication from Ingress controller to ASI front end service |
| Ingress controller | ASI front end service – ssl websevices | 35003 | asi.frontendService.ports.soassl | HTTPS | Standard communication from Ingress controller to ASI front end service |
| Ingress controller | ASI front end service – REST HTTP | 35007 | asi.frontendService.ports. restHttpAdapter | HTTP | Standard communication from Ingress controller to ASI front end service |
| Ingress controller | AC (Adapter Container) front end service - HTTP | 35004 | ac.frontendService.ports.http | HTTP | Standard communication from Ingress controller to AC front end service |
| Ingress controller | Liberty front end service - HTTP | 35005 | api.frontendService.ports.http | HTTP | Standard communication from Ingress controller to API front end service |
| Ingress controller | Liberty front end service - HTTPs | 35006 | api.frontendService.ports.https | HTTPs | Standard communication from Ingress controller to API front end service |
| Ingress controller | ITXA web services | 443 | itxaIntegration.sso | HTTPS | Standard communication from Ingress controller to ITXA web services |