[Linux-cluster] Problems with RHCS across firewalls
Dirk H. Schulz
dirk.schulz at kinzesberg.de
Tue Jan 19 18:18:38 UTC 2010
This is what I am using:
UDP: 5404,5405,50007
TCP: 11111,16851,21064,41966,41967,41968,41969,50006,50008,50009
This works so far.
Dirk
carlopmart schrieb:
> carlopmart wrote:
>> Christine Caulfield wrote:
>>> On 18/01/10 10:28, carlopmart wrote:
>>>> Hi all,
>>>>
>>>> I have several problems to setup a rhcs (two nodes) when are installed
>>>> and secured on two separated networks with a different firewalls.
>>>>
>>>> I have setup these rules on my internal firewalls to allow traffic for
>>>> rhcs:
>>>>
>>>> source: hostA
>>>> destination: hostB
>>>> services: 5404 and 50405 udp, 21064 tcp, 50006-50008-50009 tcp,
>>>> 50007 udp
>>>>
>>>> source: hostB
>>>> destination: hostA
>>>> services: 5404 and 50405 udp, 21064 tcp, 50006-50008-50009 tcp,
>>>> 50007 udp
>>>>
>>>> source: hostA and hostB
>>>> destination: 255.255.255.255
>>>> services: 5404 and 50405 udp
>>>>
>>>> source: hostA and hostB
>>>> destination: multicast_address
>>>> service: any
>>>>
>>>> ... but it doesn't works ... What am I doing wrong?? I don't use
>>>> NAT on
>>>> these firewalls due to all traffic needs to across internal networks.
>>>>
>>>> Thanks.
>>>>
>>>
>>> You mention port 50405 - that should be 5405. Now that might be a
>>> typo in your email, but if that's the port you've opened on the
>>> servers then the cluster won't start.
>>>
>>> Here's the documentation for enabling ports for cluster suite:
>>>
>>> http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Cluster_Administration/s1-iptables-CA.html
>>>
>>>
>>> Chrissie
>>>
>>> --
>>> Linux-cluster mailing list
>>> Linux-cluster at redhat.com
>>> https://www.redhat.com/mailman/listinfo/linux-cluster
>>>
>>
>> Sorry, 50405 is a typo. I am using 5405 port under firewall policies ...
>>
>>
> Nothing??
>
More information about the Linux-cluster
mailing list