Securing the IBM Storage Scale system using firewall

The IBM Storage Scale system is an open system where the customer can interact with the system through other third-party interfaces like MMC, web applications, and so on. The customer also has root access to the system just like any Linux® server administrator. Firewalls that are associated with open systems are specific to deployments, operating systems, and it varies from customer to customer. It is the responsibility of the system administrator or Lab Service (LBS) to set the firewall accordingly; similar to what Linux distributions do today. This section provides recommendations to set up a firewall to secure the IBM Storage Scale protocol nodes.

Table 1. Firewall related information
Function Firewall recommendations and considerations
IBM Storage Scale installation Firewall recommendations for the IBM Storage Scale installation
Internal communication

Firewall recommendations for internal communication among nodes

For detailed information on port usage, see IBM Storage Scale port usage.
Protocol access (NFS, SMB, S3, and Swift Object) Firewall recommendations for protocol access
IBM Storage Scale GUI Firewall recommendations for IBM Storage Scale GUI
File encryption with IBM® Security Key Lifecycle Manager (SKLM) Firewall recommendations for IBM SKLM
File encryption with Vormetric Data Security Manager (DSM) Firewall recommendations for Thales Vormetric Data Security Manager (DSM)
Performance monitoring Firewall recommendations for Performance Monitoring tool
Active File Management (AFM) Firewall considerations for Active File Management (AFM)
transparent cloud tiering Firewall recommendations for cloud services
Remotely mounted file systems Firewall considerations for remote mounting of file systems
IBM Storage Protect with IBM Storage Scale Firewall recommendations for using IBM Storage Protect with IBM Storage Scale
IBM Spectrum Archive with IBM Storage Scale Firewall considerations for using IBM Spectrum Archive with IBM Storage Scale
Call home Firewall recommendations for call home
IBM Storage Scale native REST API Firewall recommendations for IBM Storage Scale native REST API
Examples of opening firewall ports