0 Replies Latest reply on Jun 22, 2018 1:58 PM by 3632740

    Cluster communication ports

    3632740

      Hello,

       

       

      I have 1 cluster of weblogic(12.2.1.3) with 2 machines:

           Machine 1

                AdminServer

                Server1

                Server2

       

       

           Machine2:

                Server3

                Server4

       

       

      The cluster is configured like:

           Cluster Messaging Mode:      Unicast

           Migration Basis:                     database

           Default Load Algorithm :        RounRobin

           Replication Type:                   none

           Cluster Broadcast Channel    "blank"

           Servers:                                 server1, server2, server3, server4

       

       

      When I analyze the denys of the firewall I see:

       

       

      access-list inside-in_2010_09_25 denied udp inside/weblogicPROD(32900) -> contingencia_prod/weblogicCONT(7574) hit-cnt 301 300-second interval [0x5709ebc3, 0x0]

      access-list contingencia_prod_access_in denied udp contingencia_prod/weblogicCONT(58841) -> inside/weblogicPROD(7574) hit-cnt 301 300-second interval [0x62573ba, 0x0]

      access-list inside-in_2010_09_25 denied udp inside/weblogicPROD(32900) -> contingencia_prod/weblogicCONT(7574) hit-cnt 302 300-second interval [0x5709ebc3, 0x0]

      access-list contingencia_prod_access_in denied udp contingencia_prod/weblogicCONT(58841) -> inside/weblogicPROD(7574) hit-cnt 302 300-second interval [0x62573ba, 0x0]

      access-list inside-in_2010_09_25 denied udp inside/weblogicPROD(32900) -> contingencia_prod/weblogicCONT(7574) hit-cnt 301 300-second interval [0x5709ebc3, 0x0]

      access-list contingencia_prod_access_in denied udp contingencia_prod/weblogicCONT(58841) -> inside/weblogicPROD(7574) hit-cnt 301 300-second interval [0x62573ba, 0x0]

       

       

       

       

       

       

      When I see these traffic I put a new rules in the firewall to allow the traffic from and to the port 7574.

      But when we reboot the weblogic server, there was new denys:

       

       

       

       

      access-list contingencia_prod_access_in denied udp contingencia_prod/weblogicCONT(34369) -> inside/weblogicPROD(46617) hit-cnt 302 300-second interval [0x62573ba, 0x0]

      access-list inside-in_2010_09_25 denied udp inside/weblogicPROD(46617) -> contingencia_prod/weblogicCONT(34369) hit-cnt 302 300-second interval [0x5709ebc3, 0x0]

      access-list contingencia_prod_access_in denied udp contingencia_prod/weblogicCONT(34369) -> inside/weblogicPROD(46617) hit-cnt 302 300-second interval [0x62573ba, 0x0]

      access-list inside-in_2010_09_25 denied udp inside/weblogicPROD(46617) -> contingencia_prod/weblogicCONT(34369) hit-cnt 302 300-second interval [0x5709ebc3, 0x0]

      access-list contingencia_prod_access_in denied udp contingencia_prod/weblogicCONT(34369) -> inside/weblogicPROD(46617) hit-cnt 301 300-second interval [0x62573ba, 0x0]

       

       

      I think that these traffic is for cluster communication. Why is using different ports each time? Is normal that this traffic is using UDP and not TCP.

       

       

      I need to know these to create rules on my Firewall.

       

       

      Thanks very much

      Best regards