Skip to main content
NetApp Knowledge Base

What are the port requirements for installing OTV 10.x

  1. Last updated
  2. Save as PDF
Views:
332
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
virt
Last Updated:

Applies to

ONTAP tools for VMware vSphere 10.x

Answer

For proper operation and communication within your network, it is essential to configure the firewall rules accurately. This includes allowing necessary traffic for various services like ONTAP tools, VP HTTP/HTTPS connections, Kubernetes, Docker, SNMP, SSH, ICMP, NTP, SMB/Windows sharing, and Ceph services.

The following table outlines the network ports that need to be opened, categorized by service and protocol (TCP/UDP), for both IPv4 (iptables) and IPv6 (ip6tables) firewall configurations. Additionally, NAT redirection rules are specified where applicable.

Management Ports
Service Ports Protocol Description

ONTAP Tools

 8143 TCP HTTP/HTTPS connections.
8043 TCP HTTP/HTTPS connections.
9060 TCP HTTP/HTTPS connections.
443 TCP HTTP/HTTPS connections.
8443 TCP HTTP/HTTPS connections.

SSH

 22 TCP SSH connections (default SSH port).
ICMP Echo Requests Echo Request ICMP ICMP Echo Requests (Ping).
SNMP Trap Packets 1162 UDP SNMP trap packets.
NTP Client 123 UDP NTP client (source port).
Inter Cluster Ports 
Service Ports Protocol Description
VP HTTP/HTTPS Connections 2379 TCP VP HTTP/HTTPS connections.
  2380 TCP VP HTTP/HTTPS connections.
  7472 TCP/UDP VP HTTP/HTTPS connections.
  7946 TCP/UDP VP HTTP/HTTPS connections.
  9080 TCP VP HTTP/HTTPS connections (only from 127.0.0.0/8 for IPv4 or ::1/128 for IPv6).
  9083 TCP VP HTTP/HTTPS connections.
Kubernetes/Docker 9345 TCP Kubernetes/Docker connections.
  6443 TCP Kubernetes/Docker connections.
  8472 TCP/UDP Kubernetes/Docker connections.
  10250 TCP Kubernetes/Docker connections.
  30000-32767 TCP Kubernetes/Docker connections (NodePort port range).
Ceph Services 6789 TCP Ceph Monitors (mons).
  3300 TCP Ceph Monitors (mons).
  6800-7300 TCP Ceph Managers, OSDs, and Filesystem (MDS).
  80 TCP Ceph RADOS Gateway (RGW).
  443 TCP Ceph RADOS Gateway (RGW).
calico-node 9091 TCP Used by calico-node service.
  9099 TCP Used by calico-node service.
kube-vip 2112 TCP Used by kube-vip service.
  111 TCP/UDP Typically used by rpcbind for NFS.
General Ports
Service Ports Protocol Description
General Rules Loopback Traffic All Allow all loopback (lo0) traffic.
  Established Connections All Allow all established inbound connections (ESTABLISHED, RELATED).
  Outbound Traffic All Allow all outbound traffic (OUTPUT).
SMB/Windows Sharing Packets 137-139 TCP/UDP SMB/Windows sharing packets.
SNMP Trap Redirection 162 UDP SNMP Trap Redirection (redirect to 1162).
IPv6 ICMP Echo Requests IPv6-ICMP ICMP ICMP Echo Requests for IPv6.

Additional Information

additionalInformation_text

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.