Appendix B: Pre-Install Checklist: Network Access
Source | Destination | Ports | Description |
---|---|---|---|
Brainspace Common Ports | |||
End Users | Application Server | 443 (HTTPS) | User access to User Interface |
System Admin | Application, Analytics, ODA Servers | 22 (SSH) | Admin access to Secure Shell for System Administrative tasks |
Analytics & ODA Servers | Application Server | 8081 (HTTPS/Tomcat) | Inter-server communication to the Application Server |
Application Server | Analytics & ODA Servers | 1604 (HTTPS) | Inter-server communication from the Application Server |
Application Server | Analytics Server | 111 TCP/UDP (RPC) 2049 TCP/UDP (NFS) 20045 TCP/UDP (STATD) 20047 TCP/UDP (LOCKD) 20048 TCP/UDP (MOUNTD) | Network file sharing for /data |
ODA Server | Application Server | 111 TCP/UDP (RPC) 2049 TCP/UDP (NFS) 20045 TCP/UDP (STATD) 20047 TCP/UDP (LOCKD) 20048 TCP/UDP (MOUNTD) | Network file sharing for Application’s /localdata/brainspace to ODA’s /localdata-share |
Application, Analytics, ODA Servers | Application Server, or PostgreSQL Server if combined | 5432 (PostgreSQL) | Communications to the PostgreSQL database |
Relativity® Integration Ports | |||
Application Server | Relativity® RSAPI Server | 443 (HTTPS) | Relativity® REST API access |
Application Server | Relativity® MS SQL Server(s) | 1433 TCP (SQL) 1434 UDP (SQL Browser Service) | Relativity® SQL Access only, if using Relativity® Classic connector |
NOTE: Port 5000 will need to be open in the closed area to allow images to be transferred to the different hosts in the Swarm.
The following ports must be available. On some systems, these ports are open by default.
Port 2377 TCP for communication with and between manager nodes.
Port 7946 TCP/UDP for overlay network node discovery.
Port 4789 UDP (configurable) for overlay network traffic.
Ensure IP protocol 50 (IPSec ESP) traffic is allowed.
To access Reveal's Amazon ECR registries, traffic to the following URLs must be allowed in the infrastructure:
api.ecr.us-east-1.amazonaws.com
053522176595.dkr.ecr.us-east-1.amazonaws.com
prod-us-east-1-starport-layer-bucket.s3.us-east-1.amazonaws.com