Gateway Hub

Connectivity requirements

Overview

This page outlines the connectivity requirements of a Gateway Hub node.

Existing Geneos components

You can find the latest versions of all Geneos components at ITRS Downloads.

For more information about the compatibility between Gateway Hub components and other Geneos components, see the Gateway Hub Compatibility Matrix.

Licence

A valid licence is required to run Gateway Hub. Contact your sales representative for a licence.

Server connections

Hostnames

Each server in the cluster must have a unique hostname, resolvable forward and backward with every other node with both normal and reverse DNS name lookup.

Logon method

You must decide to use either passwordless SSH, or an interactive logon, as the method to log in to any server that will form part of the Gateway Hub cluster.

Server to server access

Each Gateway Hub server must have access to the listed ports of all other Gateway Hub nodes in the cluster. You should configure your firewall to allow these connections.

Ports

All ports used are TCP ports unless otherwise specified. The table below shows the configuration for he default ports on each Gateway Hub node.

Ports marked as external must be accessible to systems connecting to Gateway Hub. Ports marked as internal must be available to other Gateway Hub nodes only.

Service Port (TCP) Source IP Destination IP Purpose
DNS 53 (UDP)

Any Gateway Hub node

DNS server Domain Name Service
Gateway Hub message bus (Kafka listener) 9092 Any external Gateway

Any Gateway Hub node

Receives Gateway data
Gateway Hub REST API 8081 Any external client

Any Gateway Hub node

Gateway Hub REST API
Gateway HubWeb Console 8443

Any external client

Any Gateway Hub node

Gateway HubWeb Console
NTP (optional) 123 (UDP)

Any Gateway Hub node

NTP server Network Time Protocol
SSH 22 Any external client

Any Gateway Hub node

Secure Shell, for Ansible install and troubleshooting
SSO Agent 8080 Any external client Any Gateway Hub node Gateway Hub SSO Agent
Zookeeper 5181

Any Gateway Hub node

Any Gateway Hub node

Zookeeper API calls
Zookeeper follow-the-leader 5188

Any Gateway Hub node

Any Gateway Hub node

Zookeeper server-to-server communication
Zookeeper leader election 5189

Any Gateway Hub node

Any Gateway Hub node

Zookeeper server-to-server communication
etcd cluster 2380 Any Gateway Hub node Any Gateway Hub node etcd member communication
Capacity Planner 9090 Any Gateway Hub node Capacity Planner Publishing to Capacity Planner
JMX 10974 Any Gateway Hub node Any Gateway Hub node JMX

For instructions on how to specify ports on install, see Install.

SSL certificates

SSL certificates are required to secure the communication between Gateway Hub nodes and client applications, these can be added to Gateway Hub after installation of the binaries. You can also deploy Gateway Hub with self signed certificates for testing an development.

Obtain the certificates from your systems administrator.

For instructions on adding the SSL certificates to Gateway Hub, see Install in Install.