diff options
| author | Luana Mincu <luana.mincu@enea.com> | 2021-01-07 19:27:42 +0200 |
|---|---|---|
| committer | Luana Mincu <Luana.Mincu@enea.com> | 2021-02-11 11:27:51 +0100 |
| commit | 6bc59c3022c30a97c64652bf896ca7c697b70cba (patch) | |
| tree | 37f16e9598026a92b8acffe91260061195a39385 /doc | |
| parent | e6a4c12cdad87e06a354356d4bb26e17cca86998 (diff) | |
| download | nfv-access-documentation-6bc59c3022c30a97c64652bf896ca7c697b70cba.tar.gz | |
ELCCR-1222: ports used by uCPEM need to be open by corporate firewall
Change-Id: Id6ffa2af518d6a606e1bebc8c029119c5afa0b6c
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/book-enea-nfv-access-getting-started/doc/installation_guide.xml | 17 |
1 files changed, 8 insertions, 9 deletions
diff --git a/doc/book-enea-nfv-access-getting-started/doc/installation_guide.xml b/doc/book-enea-nfv-access-getting-started/doc/installation_guide.xml index d3c8584..368f908 100644 --- a/doc/book-enea-nfv-access-getting-started/doc/installation_guide.xml +++ b/doc/book-enea-nfv-access-getting-started/doc/installation_guide.xml | |||
| @@ -218,14 +218,6 @@ sudo systemctl mask now firewalld</programlisting> | |||
| 218 | <entry>Required for Call Home, only if uCPE devices are used | 218 | <entry>Required for Call Home, only if uCPE devices are used |
| 219 | that have an Enea NFV Access version older than 2.4.0.</entry> | 219 | that have an Enea NFV Access version older than 2.4.0.</entry> |
| 220 | </row> | 220 | </row> |
| 221 | |||
| 222 | <row> | ||
| 223 | <entry>7000:7010</entry> | ||
| 224 | |||
| 225 | <entry>TCP</entry> | ||
| 226 | |||
| 227 | <entry>Required for Reverse SSH.</entry> | ||
| 228 | </row> | ||
| 229 | </tbody> | 221 | </tbody> |
| 230 | </tgroup> | 222 | </tgroup> |
| 231 | </table> | 223 | </table> |
| @@ -239,8 +231,15 @@ sudo firewall-cmd --permanent --add-port=54327/udp | |||
| 239 | sudo firewall-cmd --permanent --add-port=5701-5708/tcp | 231 | sudo firewall-cmd --permanent --add-port=5701-5708/tcp |
| 240 | sudo firewall-cmd --permanent --add-port=4334/tcp | 232 | sudo firewall-cmd --permanent --add-port=4334/tcp |
| 241 | sudo firewall-cmd --permanent --add-port=2021-2040/tcp | 233 | sudo firewall-cmd --permanent --add-port=2021-2040/tcp |
| 242 | sudo firewall-cmd --permanent --add-port=7000-7010/tcp | ||
| 243 | sudo firewall-cmd --reload</programlisting> | 234 | sudo firewall-cmd --reload</programlisting> |
| 235 | |||
| 236 | <note> | ||
| 237 | <para>If the uCPE Manager host resides behind a corporate | ||
| 238 | port-filtering firewall, then all the aforementioned ports need to | ||
| 239 | also be enabled on the respective firewall. As an additional | ||
| 240 | requirement, port 22/TCP also needs to be enabled for reverse SSH to | ||
| 241 | the Enea uCPE Manager.</para> | ||
| 242 | </note> | ||
| 244 | </section> | 243 | </section> |
| 245 | 244 | ||
| 246 | <section id="openjdk_postgresql_config"> | 245 | <section id="openjdk_postgresql_config"> |