Specifications
Table Of Contents
- 1 Executive Summary
- 2 Cloud Computing Standards
- 3 Red Hat and Cloud Computing
- 4 Red Hat Cloud Foundations Components
- 5 RHCF Proof of Concept Configuration
- 6 Deploying Red Hat Cloud Foundations – Infrastructure Services
- 6.1 Overview
- 6.2 This section moves into the details of what needs to happen to deploy this infrastructure. At a high level, the steps that need to be accomplished.
- 6.3 Download Software
- 6.4 Deploy mgmt1 and Configure
- 6.5 Deploy Satellite Virtual Machine and Install Satellite
- 6.6 Create Kickstart Profiles and Activation Keys
- 6.7 Deploy DHCP / DNS Virtual Machine
- 6.8 Deploy Red Hat Enterprise Virtualization Platform
- 6.9 Deploy the Red Hat Enterprise Virtualization Hypervisor
- 6.10 Deploy the RHEL KVM Hypervisor
- 6.11 Add the RHEV KVM Hypervisor in RHEV-M
- 6.12 Configure RHEV Datacenter, Cluster, and Storage Domain
- 6.13 Configure ISO Domain
- 7 Deploy Tenant Virtual Machines
- 8 Configure High Availability Environment
- 9 Deploy and Scale Applications
- 9.1 Deploy Java Application
- 9.1.1 Configure GPG and Sign the javaApp package
- 9.1.2 Set up Software Channel on Satellite Server
- 9.1.3 Upload Application
- 9.1.4 Create RHN Activation Key for Custom Channel
- 9.1.5 Create a New Kickstart Profile
- 9.1.6 Deploy Virtual Machine with javaApp via PXE
- 9.1.7 Create a Template from the javaApp Virtual Machine
- 9.1.8 Scale the javaApp Virtual Machine
- 9.2 Deploy and Scale JBoss EAP Application
- 9.3 Deploy JBoss Enterprise Application Platform
- 9.4 Deploy and Scale Applications – MRG Manager
- 9.1 Deploy Java Application
- 10 Summary
- 11 Appendix A
- 12 Appendix B Scripts
IP Port Number Protocol Component
5404, 5405 UDP corosync / cman (Cluster Manager)
11111 TCP ricci (part of Conga remote agent)
21064 TCP dlm (distributed lock manager)
50006, 50008, 50009 TCP ccsd (Cluster Configuration System Daemon)
50007 UDP ccsd Cluster Configuration System Daemon)
22 TCP / UDP Secure Shell Access
80 TCP / UDP HyperText Transport Protocol
443 TCP / UDP HyperText Transport Protocol over TLS / SSL
Table 6: Iptables for Cluster Services
# ./firewall-config.sh
Please put the ports you would like to firewall here, separated by a space:
21064 22 443 80 50006 50008 50009 50007
Please put the protocols you would like to firewall here, separated by a
space:
tcp udp
iptables: Chain already exists.
iptables --append RHCF --protocol tcp --destination-port 21064 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 22 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 443 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 80 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 50006 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 50008 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 50009 --jump ACCEPT
iptables --append RHCF --protocol tcp --destination-port 50007 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 21064 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 22 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 443 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 80 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 50006 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 50008 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 50009 --jump ACCEPT
iptables --append RHCF --protocol udp --destination-port 50007 --jump ACCEPT
Remember to "service iptables save"
www.redhat.com 34