OpsCenter ports reference

OpsCenter ports reference for setting firewall rules

Table 1. Configuration files

Filename

Location dependent on the type of installation

address.yaml

  • Package installations: /var/lib/datastax-agent/conf/address.yaml

  • Tarball installations: install_location/conf/address.yaml

opscenterd.conf

  • Package installations: /etc/opscenter/opscenterd.conf

  • Tarball installations: install_location/conf/opscenterd.conf

cluster_name.conf

  • Package installations: /etc/opscenter/clusters/cluster_name.conf

  • Tarball installations: install_location/conf/clusters/cluster_name.conf

cassandra.yaml

  • Package installations: /etc/dse/cassandra/cassandra.yaml

  • Tarball installations: installation_location/resources/cassandra/conf/cassandra.yaml

Use the OpsCenter ports reference for guidance when configuring firewall rules. The ports reference provides details for the default port numbers used by OpsCenter, Lifecycle Manager, and DataStax Agents. The ports are set to defaults. The configuration options and file or UI locations for overriding port defaults are indicated in the description column of the following table.

Table 2. OpsCenter Ports
Port/Protocol Source Destination Description

8888/TCP

Management workstation

OpsCenter server

OpsCenter web-based user interface. The opscenterd daemon listens on this port for HTTP requests coming directly from the browser. Configure with the webserver port option in opscenterd.conf.

DSE nodes

OpsCenter server

LCM Meld configs and job-events. The opscenterd daemon listens on this port for configuration requests and job-events coming from DSE nodes during the provisioning and installing agent processes. Configure with the webserver port option in opscenterd.conf.

7199/TCP

DataStax Agent

DSE

JMX monitoring port. Each agent opens a JMX connection to its local node (the DataStax Enterprise process listening on this port). The JMX protocol requires that the client then reconnect on a randomly chosen port (1024+) after the initial handshake.

It is not necessary to set this local port for firewall purposes.

Configure with the jmx port option in cluster_name.conf, or if necessary, in address.yaml.

8443/TCP

Management workstation

OpsCenter server

SSL. The port on which to serve SSL traffic. The opscenterd daemon listens on this port for HTTPs requests being redirected from port 8888. The SSL port is the alternative UI/API port when SSL is enabled. When SSL is on, 8888 redirects to 8443 and serves no content. Configure with the webserver ssl_port in opscenterd.conf.

DSE nodes

OpsCenter server

LCM Meld configs and job-events. The opscenterd daemon listens on this port for configuration requests and job-events coming from DSE nodes during the provisioning and installing agent processes.Configure with the webserver ssl_port in opscenterd.conf.

25/TCP (non-SSL) 465 (SSL)

OpsCenter server

SMTP server

SMTP for email alerting. See Enabling SMTP email alerts. Configure in one or more uniquely named config_location/event-plugins/email.conf files.

9042/TCP

OpsCenter server

DSE

Native transport: The native transport port for the cluster configured in native_transport_port in cassandra.yaml. Port 9042 must be open from the OpsCenter server to all DSE nodes. Configure with the cql_port option in cluster_name.conf.

The port must also be open on a storage cluster. Configure with the storage_cassandra cql_port.

DataStax Agent

DSE

The agent and opscenterd must be able to connect to the native_transport_port.

It is not necessary to set this local port for firewall purposes.

61619/TCP

OpsCenter server

OpsCenter server

OpsCenter stomp port. A port used by the Stomp service for internal communications on the OpsCenter server.

It is not necessary to set this local port for firewall purposes.

Configure with the agents incoming_port in opscenterd.conf.

61620/TCP

DataStax Agents

OpsCenter server

Agent communications over Stomp. The opscenterd daemon listens on this port for TCP traffic coming from the agents. Configure with the stomp_port option in address.yaml.

61621/TCP

OpsCenter Server

DataStax Agents

DataStax Agent port for DataStax Agents http/https service. The agents listen on this port for TCP traffic initiated by OpsCenter. Depending on the OpsCenter and Agent configuration, traffic is either http or https protocol. Configure with the agents api_port in cluster_name.conf or in address.yaml.

22/TCP

OpsCenter server

LCM deployment targets and agent install deployment targets

SSH. Standard SSH (Secure Shell) port. Lifecycle Manager and the agent installation process log into target nodes over SSH. Configure with the agents-ssh_port in opscenterd.conf.

The SSH Management Port can be overridden at the cluster, datacenter, or node level in the Clusters workspace of Lifecycle Manager.

443/TCP

OpsCenter server

OpsCenter download host opscenter.datastax.com

OpsCenter Definitions. OpsCenter definition files allow updating the support of DSE versions without requiring upgrading to an updated version of OpsCenter itself. See Updating and configuring definitions files properties. Configure with the definitions download_port in opscenterd.conf.

389/TCP and UDP

OpsCenter server

LDAP or AD server

LDAP or AD. Default port for non-SSL LDAP and AD. Configure with the ldap server_port option in opscenterd.conf.

636/TCP and UDP

OpsCenter server

LDAP or AD server

LDAP or AD SSL. Default port for SSL traffic to LDAP and AD. Configure with the [ldap server_port] option in opscenterd.conf.

7080/TCP

OpsCenter server

DSE

Spark Jobs UI. Port at which the Spark jobs UI is exposed. Configure the port to view Spark Master nodes in the Spark console access from the Node Details dialog within OpsCenter.Configure with the spark master_http_port option in cluster_name.conf.

For information about defining a datacenter in OpsCenter LCM for Spark workloads, see Adding a datacenter. For information about using Spark with the DataStax Enterprise platform, see analyzing data using Spark.

7081/TCP

Management workstations

OpsCenter server

Spark Jobs UI. OpsCenter proxies the Spark Jobs UI.Configure with the spark base_master_proxy_port option in opscenterd.conf.

162/UDP

OpsCenter server

SNMP Manager

SNMP. Listening port on the SNMP manager to receive SNMP traps. Configure with one or more uniquely named config_location/event-plugins/snmp.conf files.

2003/TCP

DataStax Agent

Graphite server

Graphite. Port to which OpsCenter sends exported metrics to a Graphite server.

8125/UDP

DataStax Agent

StatsD server

StatsD. Port to which OpsCenter sends exported metrics to a StatsD network daemon.

9103

DataStax Agent

Prometheus server

Prometheus. Port to which OpsCenter sends exported metrics to a Prometheus server.

3128/TCP

LCM targets

Third-party proxy server

Package proxy port in LCM for DSE installs. Default port for the Lifecycle Manager package proxy for downloading software installation packages for DataStax Enterprise and its dependencies such as Java. Configure in the Package Proxy section of the Config Profile in the Lifecycle Manager UI.