For administration and operation of Gemini Central (formerly Gemini Manage), the following channels between clients and nodes, and internally between the nodes, are required to be open.
Port | Reason |
---|---|
443/TCP | HTTPS access |
22/TCP | SSH access |
4444/TCP | Internal Gemini cluster communication |
As the Web Interface and SSH console offer low-level system access, try to ensure those network settings are biased towards a ‘host-only’ approach and are not exposed to public access (ie. Anywhere, 0.0.0.0/0). Depending on the deployment, add inbound/outbound rules as needed.
For further details, see the following tables.
Common Splunk Service Ports
Port | Protocol | Direction | Purpose | Customizable |
---|---|---|---|---|
8000 | TCP | Client → Non-indexer nodes only | Splunk Web Interface | Yes |
8089 | TCP | Client → Appliance | Splunk REST API | Yes |
9998 | TCP | Appliance ↔ Appliance | Index Cluster Replication | Yes |
9998 | TCP | Appliance ↔ Appliance | Search Head Cluster Replication | Yes |
9997 | TCP | Client → Appliance | Splunk Data Forwarding | Yes |
To get the complete list of ports used by Splunk, refer to the official Splunk Enterprise documentation.
Administration and Monitoring Services
Port | Protocol | Direction | Purpose | Customizable |
---|---|---|---|---|
22 | TCP | Client → Appliance | SSH Access | Yes |
161 | UDP | Client → Appliance | SNMP Monitoring | |
2121 | TCP | Client → Appliance | FTP Service | Yes |
External Resources
Port | Protocol | Direction | Purpose | Customizable |
---|---|---|---|---|
443 | TCP | Appliance → Cloud Repository (updates.geminidata.com) | Integration Center Cloud Repository | |
162 | UDP | Appliance → Trap Destination | SNMP Traps | Yes |
389 | TCP | Appliance → LDAP Server | LDAP Authentication | Yes |
636 | TCP | Appliance → LDAP Server | LDAP over SSL/TLS Authentication | Yes |
111 2049 | TCP | Appliance → NFS Server | NFS Access | |
445 | TCP | Appliance → CIFS Server | CIFS/SMB Access (NetBIOS not included) | |
443 | TCP | Appliance → S3 Endpoint (<bucket_name>.s3.amazonaws.com) | Amazon S3 Bucket Access | |
3260 | TCP | Appliance → iSCSI Target | iSCSI Discovery & Connection | Yes |