Firewall and Security Groups
列举一些常用的数据基础设施端口如下,涉及数据库,集群相关的,不能只会关闭防火墙了。
常用的端口:
- ICMP(echo reply/ request)
- SSH (default is 22)
- HTTP (default is 80)
- HTTPS (default is 443)
- MySQL (default is 3306)
- CMON RPC (default is 9500)
- CMON RPC TLS (default is 9501)
- CMON Events (default is 9510)
- CMON SSH (default is 9511)
- CMON Cloud (default is 9518)
数据库集群常用端口
数据库、集群相关常用端口。
| 数据库集群 |
端口 |
| MySQL/MariaDB(simgle instance and replication) |
22(ssh)ICMP(echo reply/request)3306(MySQL) |
| MariaDB Galera Cluster/Percona XtraDB Cluster |
22(ssh)ICMP(echo reply/request)3306(Mysql)4444(SST)4567 TCP/UDP(Galera)4568(Galera IST)9200(HAProxy health check) |
| MySQL Cluster(NDB) |
22(SSH)ICMP(echo reply/request)1186(MySQL Cluster)2200(MySQL Cluster)3306(MySQL) |
| MongoDB replica set |
22(SSH)ICMP(echo reply/request)27017(mongod) |
| MongoDB shareded cluster |
22(SSH)ICMP(echo reply/request)27018(mongod)27017(mongos)27019(config server) |
| PostgreSQL |
22(SSH)ICMP(echo reply/request)5432(postgres) |
| HAProxy |
22(SSH)ICMP(echo reply/request)9600(HAP)3307(MySQL load-balanced)3308(MySQL load-balanced read-only)5433(PostgreSQL load-balanced)5434(PostgreSQL load-balanced read-only) |
| MariaDB MaxScale |
22(SSH)ICMP(echo reply/request)6303(MaxCtrl-CLI)4006(Round robin listener)4008(Read/Write split listener)4442(Debug information) |
| Keepalived |
22(SSH)ICMP(echo reply/request)224.0.0.0/8(multicast request)IP protocol 112(VRRP) |
| Galera Arbitrator(garbd) |
22(SSH)ICMP(echo reply/request)4567(Galera) |
| ProxySQL |
22(SSH)ICMP(echo reply/request)6032(ProxySQL Admin)<6303>(MySQL load-bananced) |
| Prometheus |
22(SSH)ICMP(echo reply/request)9090(Prometheus) |