[OpenAFS] What ports should be opened in the firewall
Martha.Cofran@cexp.com
Martha.Cofran@cexp.com
Thu, 1 Aug 2002 17:46:17 -0600
Thanks very much Jimmy.
I spent today setting up a test network with 2 subnets and firewall between
the AFS Client and Server. I opened only the ports you've specified and
everything is working great.
I'm guessing you didn't specify port 7008 (the upserver) because that is
only traffic between the 2 servers which are both in the same domain. Is
this true? We are planning to use the update server.
Thanks again
> -----Original Message-----
> From: Jimmy Engelbrecht [SMTP:jimmy@e.kth.se]
> Sent: Thursday, August 01, 2002 10:01 AM
> To: Cofran, Martha - Broomfield, CO
> Cc: openafs-info@openafs.org
> Subject: Re: [OpenAFS] What ports should be opened in the firewall
>
> Martha.Cofran@cexp.com writes:
>
> > I found a doc that says ports 7000-7032 are dedicated for server
> > communications but clients use the next available port.
>
> this is NOT true.
>
> you need to open 4711 + 7000-7007
>
> Ports in the 7020-7029 range are used by the AFS backup system, and won't
> be needed by external clients performing simple file accesses.
>
> > I'm not sure what I
> > need to open either for the current internal clients or later for the 5
> web
> > DMZ clients.
> >
> > Any pointers would be greatly appreciated.
>
> http://grand.central.org/twiki/bin/view/AFSLore/AdminFAQ#3_17_Which_TCP_IP
> _ports_and_prot
>
> /Jimmy