Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

portprotocolincoming/outgoingapplicationsourcedestinationNotes
22ssh
sshdeveloper vmhost
443

tillerclienthost
8880http
rancherclienthost
9090http
kubernetes
host
10001https
nexus3
nexus3.onap.org
10003https
nexus3
nexus3.onap.org

https
nexus
nexus.onap.org

https

ssh


git
git.onap.org
30200-30399http/https
REST apideveloper vmhost
5005tcp
java debug portdeveloper vmhost


Lockdown ports



8080

outgoing





10250-10255
in/out


Lock these down via VPC or a source CIDR that equals only the server/client IP list

https://medium.com/handy-tech/analysis-of-a-kubernetes-hack-backdooring-through-kubelet-823be5c3d67c


Azure

AWS

Image Added

Image Added

Image Added

Image Added


Image Added



Software Profile

Rancher 1.6.14

...