跳转到主内容

通过防火墙运行 fpolicy 需要哪些端口?

Views:
30
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

适用场景

  • ONTAP 9
  • 集群模式 Data ONTAP 8
  • FPolicy

问题解答

ONTAP 使用两个单独的协议来实现 FPolicy 。

  • 特定于 FPolicy 的端口号取决于 fpolicy 配置,此连接将从 SVM 的一个数据 LIF 传出到已配置的 FPolicy 服务器 IP
  • HTTPS (TCP 端口 443)连接到 外部 fpolicy 引擎中配置的管理 LIF ,这些连接将传入存储控制器

大多数外部引擎都将使用 ZAPI 调用来配置实际用于 fpolicy 流量的特定端口,请查看 FPolicy 文档以了解要使用的端口

追加信息

以下是SVM尝试访问FP引擎但握手(在端口2002上)未得到响应的示例:
clipboard_e2bc068711336253f7beafb8bbcc78253.png

与客户的防火墙团队合作、确定是否允许使用端口2002 (在此示例中)。

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.