Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

In general, your cluster configuration cannot have a firewall between the cluster and CDAP. Instead, if a firewall is used, the cluster and certain CDAP components need to be together behind the firewall. These are the ports which can be opened to provide external access:

Listen Ports for External Access

Description

Governing Configuration

Default Value in Packages

Default Value in Ambari/Cloudera Manager

CDAP Router listen port (HTTP RESTful)

router.bind.port

11015

11015

CDAP Router listen port (HTTP RESTful) (SSL)

router.ssl.bind.port

10443

10443

CDAP UI listen port

dashboard.bind.port

11011

11011

CDAP UI listen port (SSL)

dashboard.ssl.bind.port

9443

9443

CDAP Auth Server listen port

security.auth.server.bind.port

10009

10009

CDAP Auth Server listen port (SSL)

security.auth.server.ssl.bind.port

10010

10010

The exact configuration and ports required will vary depending on your use of firewalls and your specific configuration. This diagram shows a likely scenario that you could use:

...