View Full Version : Iptables rules / Ports used for Corosync

10-Oct-2011, 11:06
Hi all,

I am currently using High Availability Extension on SUSE Linux
Enterprise Server 11. I have two nodes running on a cluster. I have some
iptables inserted and as a result, the nodes sitting in the same cluster
could not see each other. The port and multicast address indicated in
"/etc/corosync/corosync.conf" has been added to my ip table.

I also referenced from this following URL: 'Corosync UDP ports - Open
SA Forum AIS Services mailing list - ArchiveOrange'
(http://web.archiveorange.com/archive/v/yYk4BQNh1z6yXhnJUbE3) that
Corosync uses port <n> and <n-1>, which I had also added <n-1> port into
my iptable.

I also found out that there is this bug reported on Redhat Linux for HA
(found here: https://bugzilla.redhat.com/show_bug.cgi?id=478401) but not
sure if it's applicable to SLES 11. Any idea if I should add port 7445

Lastly, would appreciate that I can get replies on what are the other
ports which Corosync uses that I've missed as listed below:
- Port <n> in "/etc/corosync/corosync.conf" and <n-1>
- Port 7445

Thanks in advance.


silentnoises's Profile: http://forums.novell.com/member.php?userid=117944
View this thread: http://forums.novell.com/showthread.php?t=446413

Automatic Reply
14-Oct-2011, 17:24

It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.

Has your problem been resolved? If not, you might try one of the following options:

- Visit http://support.novell.com and search the knowledgebase and/or check all
the other self support options and support programs available.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://forums.novell.com)

Be sure to read the forum FAQ about what to expect in the way of responses:

If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.

Good luck!

Your Novell Product Support Forums Team