Hi All, What are the ports needed to be opened for Gluster Geo replication ? We have a very closed setup, I could gather below info, does all of these ports need to be open on master and slave for inter communication or just 22 would work since it's using the rsync over ssh for actual data push ? *?* *Port 22 (TCP):* Used by SSH for secure data communication in Geo-replication. *?* *Port 24007 (TCP):* Used by the Gluster daemon (glusterd) for management and to intercommunicate with other glusterd instances. *?* *Ports 24008 & 24009 (TCP):* Used for GlusterFS data and metadata operations. *?* *Port 49152 to 49664 (TCP):* Used by GlusterFS for client connections. I see some monitoring happening on the tcp ports for slave volume, is this communication secure ? -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.gluster.org/pipermail/gluster-users/attachments/20231030/337b7c5d/attachment.html>
Hi, You simply need to enable port 22 on the geo-replication slave side. This will allow the master node to establish an SSH connection with the slave server and transfer data securely over SSH. Thanks, Anant ________________________________ From: Gluster-users <gluster-users-bounces at gluster.org> on behalf of dev devops <dev.devops12 at gmail.com> Sent: 31 October 2023 3:10 AM To: gluster-users at gluster.org <gluster-users at gluster.org> Subject: [Gluster-users] Gluster Geo replication EXTERNAL: Do not click links or open attachments if you do not recognize the sender. Hi All, What are the ports needed to be opened for Gluster Geo replication ? We have a very closed setup, I could gather below info, does all of these ports need to be open on master and slave for inter communication or just 22 would work since it's using the rsync over ssh for actual data push ? ? Port 22 (TCP): Used by SSH for secure data communication in Geo-replication. ? Port 24007 (TCP): Used by the Gluster daemon (glusterd) for management and to intercommunicate with other glusterd instances. ? Ports 24008 & 24009 (TCP): Used for GlusterFS data and metadata operations. ? Port 49152 to 49664 (TCP): Used by GlusterFS for client connections. I see some monitoring happening on the tcp ports for slave volume, is this communication secure ? DISCLAIMER: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error, please notify the sender. This message contains confidential information and is intended only for the individual named. If you are not the named addressee, you should not disseminate, distribute or copy this email. Please notify the sender immediately by email if you have received this email by mistake and delete this email from your system. If you are not the intended recipient, you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited. Thanks for your cooperation. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.gluster.org/pipermail/gluster-users/attachments/20231103/940f64c9/attachment.html>
While creating the Geo-replication session it mounts the secondary Volume to see the available size. To mount the secondary volume in Primary, port 24007 and 49152-49664 of the secondary volume needs to be accessible from the Primary (Only in the node from where the Geo-rep create command is executed). This need to be changed to use SSH(bug). Alternatively use georep setup tool from?https://github.com/aravindavk/gluster-georep-tools. This tool only uses Port 22 of SSH. Once the Geo-rep session is created, all the communication and the data transfer happens via SSH(Default port: 22).? Aravinda Kadalu Technologies https://kadalu.tech ---- On Tue, 31 Oct 2023 08:40:17 +0530 dev devops <dev.devops12 at gmail.com> wrote --- Hi All,? What are the ports needed to be opened for Gluster Geo replication ? We have a very closed setup, I could gather below info, does all of these ports need to be open on master and slave for inter communication or just 22 would work since it's using the rsync over ssh for actual data push ? ? Port 22 (TCP):?Used by SSH for secure data communication in Geo-replication. ? Port 24007 (TCP):?Used by the Gluster daemon (glusterd) for management and to intercommunicate with other glusterd instances. ? Ports 24008 & 24009 (TCP):?Used for GlusterFS data and metadata operations. ? Port 49152 to 49664 (TCP):?Used by GlusterFS for client connections. I see some monitoring happening on the tcp ports for slave volume, is this communication secure ?? ________ Community Meeting Calendar: Schedule - Every 2nd and 4th Tuesday at 14:30 IST / 09:00 UTC Bridge: https://meet.google.com/cpu-eiue-hvk Gluster-users mailing list mailto:Gluster-users at gluster.org https://lists.gluster.org/mailman/listinfo/gluster-users -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.gluster.org/pipermail/gluster-users/attachments/20231103/2309c87c/attachment.html>