External client communications

Clients need to communicate with grid nodes and, by extension, the servers that host them in order to ingest and retrieve content. The ports used depends on the protocols chosen to ingest and retrieve content.

If enterprise networking policies restrict the availability of any of the ports used for traffic into or out of the nodes, you can remap ports when deploying nodes.

The following table shows the ports used for traffic into the nodes.

Port Protocol Allows access to
22 (TCP) SSH Servers being used for software installation and maintenance
80 (TCP) HTTP Admin Nodes (redirects to 443)
161 (TCP/UDP) SNMP Admin Nodes
443 (TCP) HTTPS Admin Nodes
445 (TCP) SMB Audit logs on Admin Nodes
905 (TCP) NFS statd Audit logs on Admin Nodes
2049 (TCP) NFS Audit logs on Admin Nodes
8022 (TCP) SSH Servers being used for software installation and maintenance
8082 (TCP) S3 API Gateway Nodes
8083 (TCP) Swift API Gateway Nodes
9022 (TCP) SSH StorageGRID Webscale appliances
18082 (TCP) S3 Storage Nodes
18083 (TCP) Swift Storage Nodes

The following table shows the ports used for traffic out of the nodes.

Port Protocol Used for
25 (TCP) SMTP Alerts and AutoSupport.
Configurable (TCP) SMTP Alerts and AutoSupport. You can override the default port setting of 25 using the Email Servers page.
53 (TCP/UDP) DNS Domain name system
123 (UDP) NTP Network time protocol service
389 (TCP/UDP) LDAP Accessing the LDAP server from Storage Nodes that run the ADC service
80 (TCP) HTTP (Default) Platform services messages sent to Amazon Web Services (AWS) or another external service from Storage Nodes that run the ADC service
443 (TCP) HTTPS
  • Accessing AWS S3 from Archive Nodes
  • (Default) Platform services messages sent to AWS or another external service from Storage Nodes that run the ADC service
Configurable (TCP)

HTTP

Platform services messages sent from Storage Nodes that run the ADC service

Tenants can override the default HTTP port setting of 80 when creating an endpoint.

Configurable (TCP)

8082 for destination API Gateway Nodes

HTTPS

Platform services messages sent from Storage Nodes that run the ADC service

Tenants can override the default HTTPS port setting of 443 when creating an endpoint.

Port 8082 is used by default when StorageGRID Webscale is used as a destination endpoint for CloudMirror replication