HP XC System Software Administration Guide Version 3.0

Table 9-2. Service Ports Service Ports

CommentsProtocolPort NumberInternal or ExternalService

The highest port number

used is based on the

number of modules

configured to udpcast.

Usually, the upper limit is

9020.

udp9000 to 9020InternalFlamethrower

Only if the HP XC system is

set up as a member of a

larger LSF cluster. Refer to

“Installing LSF-HPC for

SLURM into an Existing

Standard LSF Cluster ”

(page 171) for more

information

tcp/udp6878 to 6879, 6881

to 6883

ExternalLSF

See also mondtcp2710InternalSupermon

tcp/udp514Internalsyslog_ng

tcp/udp523InternalSystemImager

To verify the actual current ports open on any node, use the iptables --list -n -v command.

Opening Ports in the Firewall

Caution

Opening an IP port can constitute a breach of security. Use the following information with care.

You can open a port in the firewall on any node by using the openipport command; however, that port

opening specification is overwritten when the node is reimaged. The exception is the head node, which as

the golden client, is not reimaged. This command is described in “Opening a Temporary Port in the Firewall”

(page 92).

Alternatively, you can open an IP port in the firewall globally on all the nodes by updating a single file; the

port remains open after the nodes are reimaged. For more information, see “Opening an IP Port in the

Firewall Persistently” (page 93).

Opening a Temporary Port in the Firewall

The openipport command enables the superuser to open an IP service port in the firewall using the following

information:

• The port number to open

• The protocol to be used

• The list of interfaces on which the port is to be opened

NOTE: Use the openipport command judiciously. The port remains open unless or until the node is

reimaged, even if the node is rebooted.

Typically, you would use the openipport command for each defined interface except the external interface.

92 Opening an IP Port in the Firewall