Return-Path: X-Original-To: apmail-incubator-cloudstack-users-archive@minotaur.apache.org Delivered-To: apmail-incubator-cloudstack-users-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id D1CDF98DC for ; Thu, 30 Aug 2012 06:35:05 +0000 (UTC) Received: (qmail 41178 invoked by uid 500); 30 Aug 2012 06:35:04 -0000 Delivered-To: apmail-incubator-cloudstack-users-archive@incubator.apache.org Received: (qmail 40842 invoked by uid 500); 30 Aug 2012 06:35:03 -0000 Mailing-List: contact cloudstack-users-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: cloudstack-users@incubator.apache.org Delivered-To: mailing list cloudstack-users@incubator.apache.org Received: (qmail 40808 invoked by uid 99); 30 Aug 2012 06:35:02 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 30 Aug 2012 06:35:02 +0000 X-ASF-Spam-Status: No, hits=-0.7 required=5.0 tests=RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of calebcall@me.com designates 17.158.236.240 as permitted sender) Received: from [17.158.236.240] (HELO nk11p04mm-asmtp005.mac.com) (17.158.236.240) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 30 Aug 2012 06:34:57 +0000 MIME-version: 1.0 Content-transfer-encoding: 7BIT Content-type: text/plain; CHARSET=US-ASCII Received: from [10.1.10.21] (c-67-172-235-79.hsd1.ut.comcast.net [67.172.235.79]) by nk11p04mm-asmtp005.mac.com (Oracle Communications Messaging Server 7u4-24.01(7.0.4.24.0) 64bit (built Jan 3 2012)) with ESMTPSA id <0M9K009Q629NI140@nk11p04mm-asmtp005.mac.com> for cloudstack-users@incubator.apache.org; Thu, 30 Aug 2012 06:34:36 +0000 (GMT) X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.7.7855,1.0.431,0.0.0000 definitions=2012-08-30_02:2012-08-30,2012-08-30,1970-01-01 signatures=0 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 ipscore=0 suspectscore=1 phishscore=0 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=6.0.2-1203120001 definitions=main-1208290414 Subject: Re: Ports needed between servers From: Caleb Call In-reply-to: Date: Thu, 30 Aug 2012 00:34:35 -0600 Message-id: <7324D76E-EE0E-4D6D-BB43-F9043ABD3836@me.com> References: To: cloudstack-users@incubator.apache.org X-Mailer: Apple Mail (2.1486) X-Virus-Checked: Checked by ClamAV on apache.org Let's bring this back up. According to the document from Citrix, the ports that are needed are all TCP. Is this correct? Or do we need UDP for some of these as well (nfs, rpc, etc)? I've got the required ports opened up (according to the document) and I'm unable to mount my secondary storage. I'm guessing it's due to needing UDP as well but would like to confirm that before asking for more ports to be opened from our neteng team. TCP works on port 2049: [root@offshore-hv01 ~]# telnet 10.4.43.44 2049 Trying 10.4.43.44... Connected to 10.4.43.44. Escape character is '^]'. ^] telnet> quit Connection closed. [root@offshore-hv01 ~]# However, when I try to mount the nfs share, it just hangs and times-out: [root@offshore-hv01 ~]# mount 10.4.43.44:/vol/offshore_vm_images /mnt/nfs mount: mount to NFS server '10.4.43.44' failed: timed out (retrying). mount: mount to NFS server '10.4.43.44' failed: timed out (retrying). mount: mount to NFS server '10.4.43.44' failed: timed out (retrying). ^C [root@offshore-hv01 ~]# Thanks, Caleb On Aug 28, 2012, at 4:08 PM, Caleb Call wrote: > I've found this document that should give me what I'm looking for (unless something has changed). > > http://support.citrix.com/servlet/KbServlet/download/2389-102-673796/CitrixPorts_by_Product_and_Port_2060.pdf > > > On Aug 28, 2012, at 3:45 PM, Caleb Call wrote: > >> What ports are needed to be open from the management server to hypervisors and hypervisors to management servers? I've ran netstat on the boxes and can only see port 443 on the hypervisor talking to the management server and nothing on the management server talking to the hypervisors. I'm working on setting up a new zone that is firewalled off from our management server so I'm trying to figure out what ports are actually needed. >> >> Thanks >