Setting Manager node inbound rules

The Manager Node is the D/L IP for each rule.

Table 1. Manager Node inbound rules
Rule Action Protocol D/L Port S/R IP S/R Port Description

1

Allow

TCP

80

Admin clients

Any

HTTP for web UI

2

Allow

UDP

123

Any IBM Cloud Object Storage System node, external NTP server

123

NTP protocol

3

Allow

TCP

443

Any IBM Cloud Object Storage System node, Admin clients, SDK clients

Any

HTTPS for Manager Web Interface, authentication and registry data

4

Allow

TCP

22

Admin clients

Any

SSH for administrative CLI

5

Allow

TCP

8088

Manager node

Any

Appliance management protocol

6

Allow

TCP

8192

Admin clients

Any

Stats API on HTTP

7

Allow

TCP

8193

Admin clients

Any

Stats API on HTTPS

8

Allow

ICMP

NA

Any IBM Cloud Object Storage System node, Admin clients

NA

ICMP ping

9

Allow

UDP

Any

external DNS server

53

DNS protocol

10

Allow

UDP, TCP

161

SNMP-based monitoring application

Any

SNMP endpoint for GET requests

The Manager Node receives periodic ICMP requests from each node. The Manager Node must be able to receive ICMP replies from each node.