@Shuliyey ports 500/udp, 4500/udp need to be opened on the cluster hosts, not the server(a.k.a master) node. The only port that needs to be opened on server node is 8080/tcp if you are using the default or any_other_port_you_chose/tcp. In case you are using certificates, this will change to 443/tcp.