Iptables rules / Ports used for Corosync

10-Oct-2011, 11:06
Hi all,

I am currently using High Availability Extension on SUSE Linux
Enterprise Server 11. I have two nodes running on a cluster. I have some
iptables inserted and as a result, the nodes sitting in the same cluster
could not see each other. The port and multicast address indicated in
"/etc/corosync/corosync.conf" has been added to my ip table.

I also referenced from this following URL: 'Corosync UDP ports - Open
SA Forum AIS Services mailing list - ArchiveOrange'
(http://web.archiveorange.com/archive/v/yYk4BQNh1z6yXhnJUbE3) that
Corosync uses port <n> and <n-1>, which I had also added <n-1> port into
my iptable.

I also found out that there is this bug reported on Redhat Linux for HA
(found here: https://bugzilla.redhat.com/show_bug.cgi?id=478401) but not
sure if it's applicable to SLES 11. Any idea if I should add port 7445

Lastly, would appreciate that I can get replies on what are the other
ports which Corosync uses that I've missed as listed below:
- Port <n> in "/etc/corosync/corosync.conf" and <n-1>
- Port 7445

Thanks in advance.


