GMD port requirements

28 views

Skip to first unread message

Shane McCarron

unread,

Jan 4, 2023, 1:46:25 PM1/4/23

to codership

The documentation for what ports a node running galera manager does not seem to be correct. (note - this is on DigitalOcean and using their Firewall service, not any on-node firewalling).

If I have no firewall at all on the node, then everything is fine. If I try to limit incoming connections on ports 80 and 443 to everywhere (because I am permitting remote management) and ports TCP 9090-9100 monitoring seems to be not working. I have looked at the server on which GMD is running to see what ports are being 'listened' on, and all I see are:

Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:8086 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:42039 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:8000 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:9091 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:10022 0.0.0.0:* LISTEN
tcp6 0 0 :::22 :::* LISTEN
tcp6 0 0 :::5666 :::* LISTEN
tcp6 0 0 :::10022 :::* LISTEN
tcp6 0 0 :::9100 :::* LISTEN
udp 0 0 127.0.0.53:53 0.0.0.0:*
udp6 0 0 :::51743 :::*
udp6 0 0 :::56075 :::*
udp6 0 0 :::50978 :::*
udp6 0 0 :::44880 :::*
raw 0 0 0.0.0.0:6 0.0.0.0:* 7
raw6 0 0 :::58 :::* 7
raw6 0 0 :::58 :::* 7

What am I missing here? I really don't like having no firewall at all on this server.

Reply all

Reply to author

Forward

0 new messages