Setting Manager node inbound rules
The Manager Node is the D/L IP for each rule.
| Rule | Action | Protocol | D/L Port | S/R IP | S/R Port | Description |
|---|---|---|---|---|---|---|
|
1 |
Allow |
TCP |
80 |
Admin clients |
Any |
HTTP for web UI |
|
2 |
Allow |
UDP |
123 |
Any IBM Cloud Object Storage System node, external NTP server |
123 |
NTP protocol |
|
3 |
Allow |
TCP |
443 |
Any IBM Cloud Object Storage System node, Admin clients, SDK clients |
Any |
HTTPS for Manager Web Interface, authentication and registry data |
|
4 |
Allow |
TCP |
22 |
Admin clients |
Any |
SSH for administrative CLI |
|
5 |
Allow |
TCP |
8088 |
Manager node |
Any |
Appliance management protocol |
|
6 |
Allow |
TCP |
8192 |
Admin clients |
Any |
Stats API on HTTP |
|
7 |
Allow |
TCP |
8193 |
Admin clients |
Any |
Stats API on HTTPS |
|
8 |
Allow |
ICMP |
NA |
Any IBM Cloud Object Storage System node, Admin clients |
NA |
ICMP ping |
|
9 |
Allow |
UDP |
Any |
external DNS server |
53 |
DNS protocol |
|
10 |
Allow |
UDP, TCP |
161 |
SNMP-based monitoring application |
Any |
SNMP endpoint for GET requests |
The Manager Node receives periodic ICMP requests from each node. The Manager Node must be able to receive ICMP replies from each node.