2.3. Enabling IP Ports
Before deploying a Red Hat Cluster, you must enable certain IP ports on the cluster nodes and on computers that run luci (the Conga user interface server). The following sections identify the IP ports to be enabled:
2.3.1. Enabling IP Ports on Cluster Nodes
To allow Red Hat Cluster nodes to communicate with each other, you must enable the IP ports assigned to certain Red Hat Cluster components. Table 2.1, “Enabled IP Ports on Red Hat Cluster Nodes” lists the IP port numbers, their respective protocols, and the components to which the port numbers are assigned. At each cluster node, enable IP ports according to Table 2.1, “Enabled IP Ports on Red Hat Cluster Nodes”.
Note
IPV6 is not supported for Cluster Suite in Red Hat Enterprise Linux 5.
IP Port Number | Protocol | Component |
---|---|---|
5404, 5405 | UDP | cman (Cluster Manager) |
11111 | TCP | ricci (part of Conga remote agent) |
14567 | TCP | gnbd (Global Network Block Device) |
16851 | TCP | modclusterd (part of Conga remote agent) |
21064 | TCP | dlm (Distributed Lock Manager) |
50006, 50008, 50009 | TCP | ccsd (Cluster Configuration System daemon) |
50007 | UDP | ccsd (Cluster Configuration System daemon) |
Note
Table 2.1, “Enabled IP Ports on Red Hat Cluster Nodes” shows no IP ports to enable for
rgmanager
. For Red Hat Enterprise Linux 5.1 and later, rgmanager
does not use TCP or UDP sockets.
2.3.2. Enabling IP Ports on Computers That Run luci
To allow client computers to communicate with a computer that runs luci (the Conga user interface server), and to allow a computer that runs luci to communicate with ricci in the cluster nodes, you must enable the IP ports assigned to luci and ricci. Table 2.1, “Enabled IP Ports on Red Hat Cluster Nodes” lists the IP port numbers, their respective protocols, and the components to which the port numbers are assigned. At each computer that runs luci, enable IP ports according to Table 2.2, “Enabled IP Ports on a Computer That Runs luci”.
Note
If a cluster node is running luci, port 11111 should already have been enabled.
IP Port Number | Protocol | Component |
---|---|---|
8084 | TCP | luci (Conga user interface server) |
11111 | TCP | ricci (Conga remote agent) |
If your server infrastructure incorporates more than one network and you want to access luci from the internal network only, you can configure the stunnel component to listen on one IP address only by editing the
LUCI_HTTPS_PORT
parameter in the /etc/sysconfig/luci
file as follows:
LUCI_HTTPS_PORT=10.10.10.10:8084