You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@mesos.apache.org by Marc Roos <M....@f1-outsourcing.eu> on 2019/07/25 21:46:04 UTC
Necessary open ports container network namespace
How can I retrieve what ports mesos uses to communicate with the task?
Say I change default policies on INPUT, OUTPUT to DROP. How can I
retrieve these random port numbers, to enable this traffic? Is there a
way to put them in the environment or so?
[@ mesos-cni]# ip netns exec server netstat -tan
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address
State
tcp 0 0 0.0.0.0:42629 0.0.0.0:*
LISTEN
tcp 0 0 0.0.0.0:8282 0.0.0.0:*
LISTEN
tcp 0 0 172.16.1.104:42629 172.16.0.1:57110
ESTABLISHED
tcp 0 0 172.16.1.104:33222 192.168.10.153:5051
ESTABLISHED
[@mesos]# ip netns exec haproxy netstat -tanp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address
State PID/Program name
tcp 0 0 0.0.0.0:36066 0.0.0.0:*
LISTEN 583742/mesos-execut
tcp 0 0 0.0.0.0:1936 0.0.0.0:*
LISTEN 583789/haproxy
tcp 0 0 0.0.0.0:80 0.0.0.0:*
LISTEN 583789/haproxy
tcp 0 0 0.0.0.0:8080 0.0.0.0:*
LISTEN 583789/haproxy
tcp 0 0 0.0.0.0:8888 0.0.0.0:*
LISTEN 583789/haproxy
tcp 0 0 0.0.0.0:443 0.0.0.0:*
LISTEN 583789/haproxy
tcp 0 0 127.0.0.1:8888 127.0.0.1:55472
TIME_WAIT -
tcp 0 0 127.0.0.1:8888 127.0.0.1:55570
TIME_WAIT -
tcp 0 0 192.168.122.240:39104 192.168.10.114:5051
ESTABLISHED 583742/mesos-execut
tcp 0 0 192.168.122.240:36066 192.168.10.114:45824
ESTABLISHED 583742/mesos-execut
tcp 0 0 192.168.122.240:36066 192.168.10.114:45822
TIME_WAIT -
tcp6 0 0 :::5555 :::*
LISTEN 583784/dataplaneapi