Firewall
Firewall setup for various components
Last updated
Firewall setup for various components
Last updated
Copyright © 2024 OpenG2P. This work is licensed under Creative Commons Attribution International LicenseCC-BY-4.0 unless otherwise noted.
To set up the Kubernetes cluster, you need to open a few ports on all nodes as mentioned below.
Set up firewall rules on each node according to the following table.
Protocol | Port | Access | Purpose |
---|---|---|---|
Protocol | Port | Access | Purpose |
---|---|---|---|
The exact method to set up the firewall rules will vary from cloud to cloud and on-prem. (For example on AWS, EC2 security groups can be used. For on-prem cluster, ufw can be used and so on)
On your machine install ansible
Make sure you have SSH access to all nodes of the cluster
Create hosts.ini
file. Sample given here.
Copy ports.yaml
file and inspect for any changes w.r.t to above table.
Run
You can use ufw
to set up the firewall on each cluster node.
SSH into each node, and change to superuser
Run the following command for each rule in the above table
Example:
Enable ufw:
Additional Reference: RKE2 Networking Requirements
Protocol | Port | Access | Purpose |
---|---|---|---|
Protocol | Port | Access | Purpose |
---|---|---|---|