This document provides the list of all known connections that Swimlane K8s requires to run. The ports listed below need to be opened on masters/workers nodes.

Note: Any additional services are not listed here.

Below is an example of how the above ports are configured using firewalld.

# Change to root
$ sudo -i

# Install firewalld if not installed, for example on CentOS
$ yum install firewalld -y
# Enable and start firewalld
$ systemctl enable firewalld
$ systemctl start firewalld
# Create a file and add the rules below 
$ vi firewalld-rules.sh

#!/bin/bash
set -e

echo "net.ipv4.ip_forward = 1" >> /etc/sysctl.conf
sysctl -p

firewall-cmd --zone=external --add-masquerade

firewall-cmd --permanent --zone=trusted --add-interface=weave

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="22" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="443" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="6443" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="2379-2380" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="10250-10252" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="udp" port="6873-6874" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="6873" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="32000-32767" accept'

firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="udp" port="514" accept'

# For Replicated deployment
firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="8800" accept'

# For Replicated deployment
firewall-cmd --permanent --zone=public --add-rich-rule='
  rule family="ipv4"
  port protocol="tcp" port="9870-9881" accept'

firewall-cmd --reload

# Set proper permissions
$ chmod 700 firewalld-rules.sh

# Run the script to add the rules
$ ./firewalld-rules.sh

Validating 3rd Party Certificates before uploading to Swimlane Linux deployments

Swimlane HA K8s firewall rules

test12

sdfdssdfsdfsdfsdfdsfsdf

edfsad

dsfsdfsdf

test

specific

var_miha

new_var_2

new_mih_var

mih_var

testheight

available

testulet

testvar

This is a plain text that will be inserted in an expandable heading for using this raw as an exampl

altscenario

This is a plain text that will be inserted in an expandable heading for using this raw as an example

scenario

exemplu

variabila

Archbee

text

refresh_token

YourBank

MyBank

variable_test_video

variable123

silviu

Bogdan_test

ferwhethgte

target1

google

support

product_name

productName1

companyLegalName

programName

customerName1

productName

Product_Name

Test

SEFAS

uptempo

customerName

testName

name1

customername

apilink1-getallmethod

variable_one

capitalize

company_name_adobe

jama_2

jama_1

domain

email

product

Glossary lets you define every tricky term, then gives them a sneak peek explanation on hover... Just like I'm doing with this text right here!

Glossary_feature

Google

aaaa

insitutionAdress

dasdas666

aa112

asdasdas

asdasd

What

New_reusable

test_var2

test_var

Install and update Python packages behind a proxy

Swimlane (10x) Platform Installer Guide

Install Swimlane on an Embedded Kubernetes Cluster

System Requirements for an Embedded Cluster Install

Overriding Installer Settings

Add Additional Nodes to Create an HA Cluster

Air Gap Installation with kURL

Configure the Swimlane Platform for an Embedded Cluster Install

More About the Installer UI on an Embedded Cluster Install

Backup and Restore on an Embedded Cluster with Snapshots

Expand MongoDB Disk Space

Update the Load Balancer Address

Deploy with an External MongoDB Cluster

Automate Installation

Embedded Cluster Installation

Install Into an Online Existing Kubernetes Cluster

System Requirements for an Existing Cluster Install

Air-gap-installation-on-an-existing-kubernetes-cluster

Install Into an Online OpenShift Cluster

Configure the Swimlane Platform for an Existing Cluster Install

More About the Installer UI on an Existing Cluster Install

Backup and Restore on an Existing Cluster with Snapshots

Pod Requests and Limits

Service Account Permissions

Existing Cluster Installation

Enable additional logging using the application runtime environment - aspNetCore

Installing Robo 3T and running a query for MongoDB

Connect to MongoDB from Outside Kubernetes

Preliminary diagnostic data for Kubernetes troubleshooting

Restart Swimlane Services for Swimlane 10.x

Update a Certificate for the Swimlane Web Interface

How Do I Specify a CIDR IP Address Range When Installing Swimlane with the SPI?

Basic Swimlane Platform Installer (SPI) Troubleshooting Checklist

Using Velero commands for SPI Backup and Restore

How to Renew Envoy Pod TLS Certificates

How to Inspect The containerd Image Hash in a Kubernetes Cluster

Troubleshooting using swimlane-tools pod

How to configure AWS Network Load Balancer (NLB) for use with HA

Analyzing a Swimlane Platform Installer (SPI) Support Bundle

How To Reinitialize PostgreSQL (Swimlane)

Upload new TLS certificate for the KOTS admin page

Installing or Renewing A New License Key

How to Install and Use the restic CLI

How to Reduce the Restic Prune Interval to Retrieve Deleted Velero Backup Disc Space

Resetting Swimlane Platform Installer (SPI) Console Admin Password

How to Work Around SPI Installer Incompatible Version Problem

How to Configure MinIO Snapshot Storage for Swimlane SPI

Analyze a Swimlane Platform Installer Support Bundle

Generate a Support Bundle

How to Measure IOPS Using fio

Stop and Restart a Single-Node Deployment

Troubleshooting Checklist

Troubleshooting kubectl connection refused

kubectl commands are failing due to proxy

Upload a New TLS Certificate

Resizing the MongoDB PVC on eks existing clusters using gp2 as the MongoDB volume storageclass

Troubleshooting Velero Snapshot Backup and Restore Failures

Troubleshooting Guide

Swimlane Platform Installer Guide