Setting Manager node outbound rules

The Manager node is the S/L IP for each rule.

Table 1. Manager Node outbound rules
Rule Action Protocol S/L Port D/R IP D/R Port Description

1

Allow

TCP

Any

Slicestor Node

5000

Data dispersal protocol

2

Allow

TCP

Any

Active Directory server

389 (default)

LDAP for AD integration*, port is configurable.

3

Allow

TCP

Any

Active Directory server

636 (default)

LDAPS for AD integration*, port is configurable.

4

Allow

UDP

Any

external SNMP Trap collector

162 (default)

SNMP traps to external SNMP server, port is configurable.

5

Allow

TCP

Any

external Mail server

25 (default)

SMTP for alert email*, send to external email server, port is configurable.

6

Allow

TCP

Any

external Mail server

465 (default)

SMTPS for alert email*, send to external email server, port is configurable.

7

Allow

TCP

Any

external FTP backup server

21

Manager node to external FTP backup server

8

Allow

UDP

Any

external DNS server

53

DNS protocol

9

Allow

UDP

123

Any IBM Cloud Object Storage System node, external NTP server

123

NTP protocol

10

Allow

ICMP

NA

Any IBM Cloud Object Storage System node

NA

 

11

Allow

TCP

Any

Any IBM Cloud Object Storage System node

8088

Appliance management protocol

12

Allow

TCP

Any

External Syslog server

514 (default)

Syslog Alerts

13

Allow

TCP

Any

Slicestor Node

7

Appliance presence detection

14

Allow

TCP

Any

Slicestor Node

5000

Management Vault Access

15

Allow

TCP

Any

external SFTP backup server

22

Manager node to external SFTP backup server

16

Allow

TCP

Any

external HTTPS log collection destination server 443

Manager node to external HTTPS log collection destination server

17

Allow

TCP

Any

external HTTP log collection destination server 80

Manager node to external HTTP log collection destination server

18

Allow

TCP

Any

external SFTP log collection destination server 22

Manager node to external SFTP log collection destination server

The Manager Node sends periodic ICMP replies to each node. Manager must send ICMP requests to each node.

Note: Specific firewall rule set implementation depends on the customer security policies.