[HELP-8187] FIWARE.Request.Lab.opening 27017 on mongodb vms. - JIRA

Details

Type: extRequest
Status: Closed
Priority: Major
Resolution: Done
Fix Version/s: 2021
Component/s: FIWARE-LAB-HELP
Labels:
None

Sender Email:
federico.facca@martel-innovate.com,joseignacio.carretero@fiware.org,federico.facca@martel-consulting.ch
HD-Node:
Spain

Description

dear support team,
apparently you entirely blocked the access to 27017 tcp port on:

130.206.84.32 (public ip) / 10.0.64.32 (private ip)
130.206.84.33 (public ip) / 10.0.64.33 (private ip)
130.206.84.34 (public ip) / 10.0.64.34 (private ip)

can you open it again? the port need to be reachable by the private network 10.0.64.0/25 if it is not reachable:
1 - the mongodb replicate set breaks
2 - the context broker cannot reach the mongodb servers

thanks,
federico
Dr. Federico Michele Facca
Head of Martel Lab

Martel Innovate
Dorfstrasse 73 - 3073 Gümligen (Switzerland)
0041 78 807 58 38
0041 31 994 25 25
martel-innovate.com <http://martel-innovate.com/>

__________________________________________________________________________________________

You can get more information about our cookies and privacy policies on the following links:

Fiware-lab-help mailing list
Fiware-lab-help@lists.fiware.org
https://lists.fiware.org/listinfo/fiware-lab-help

[Created via e-mail received from: Federico Michele Facca <federico.facca@martel-innovate.com>]

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

FW External User added a comment - 30/Jan/17 9:15 AM

Comment by joseignacio.carretero@fiware.org :

The ports are internally opened, the synchronization can be made using
internal IPs 10.0.64.33 (that doesn't cross the firewall), and It
shouldn't work using the external IPs (130.206.84.3x).

Regards,
José Ignacio

El 27/01/17 a las 13:49, Federico Michele Facca escribió:
> dear support team,
> apparently you entirely blocked the access to 27017 tcp port on:
>
> 130.206.84.32 (public ip) / 10.0.64.32 (private ip)
> 130.206.84.33 (public ip) / 10.0.64.33 (private ip)
> 130.206.84.34 (public ip) / 10.0.64.34 (private ip)
>
> can you open it again? the port need to be reachable by the private
> network 10.0.64.0/25 if it is not reachable:
> 1 - the mongodb replicate set breaks
> 2 - the context broker cannot reach the mongodb servers
>
> thanks,
> federico
>
> Dr. Federico Michele Facca
> /Head of Martel Lab/
>
> Martel Innovate
> Dorfstrasse 73 - 3073 Gümligen (Switzerland)
> 0041 78 807 58 38
> 0041 31 994 25 25
> martel-innovate.com <http://martel-innovate.com>
>
>
>
>
>
>

Show

FW External User added a comment - 30/Jan/17 9:15 AM Comment by joseignacio.carretero@fiware.org : The ports are internally opened, the synchronization can be made using internal IPs 10.0.64.33 (that doesn't cross the firewall), and It shouldn't work using the external IPs (130.206.84.3x). Regards, José Ignacio El 27/01/17 a las 13:49, Federico Michele Facca escribió: > dear support team, > apparently you entirely blocked the access to 27017 tcp port on: > > 130.206.84.32 (public ip) / 10.0.64.32 (private ip) > 130.206.84.33 (public ip) / 10.0.64.33 (private ip) > 130.206.84.34 (public ip) / 10.0.64.34 (private ip) > > can you open it again? the port need to be reachable by the private > network 10.0.64.0/25 if it is not reachable: > 1 - the mongodb replicate set breaks > 2 - the context broker cannot reach the mongodb servers > > thanks, > federico > > Dr. Federico Michele Facca > /Head of Martel Lab/ > > Martel Innovate > Dorfstrasse 73 - 3073 Gümligen (Switzerland) > 0041 78 807 58 38 > 0041 31 994 25 25 > martel-innovate.com < http://martel-innovate.com > > > > > > >

Hide

Permalink

Federico Michele Facca added a comment - 30/Jan/17 10:27 AM

Hi Jose,
thanks, then I may need some help with iptables when I run
nmap -Pn -n -p 27017 --script=mongodb-info,mongodb-databases -T5 10.0.64.32 / 33 / 34

i get that the port is filtered and when I add the member to the cluster, it does not work.

thanks for any hint and help!
federico

Show

Federico Michele Facca added a comment - 30/Jan/17 10:27 AM Hi Jose, thanks, then I may need some help with iptables when I run nmap -Pn -n -p 27017 --script=mongodb-info,mongodb-databases -T5 10.0.64.32 / 33 / 34 i get that the port is filtered and when I add the member to the cluster, it does not work. thanks for any hint and help! federico

Hide

Permalink

José Ignacio Carretero Guarde added a comment - 30/Jan/17 10:44 AM - edited

Well, the fact is that it is opened. Just try a simpler nmap command, just trying to stablish a full tcp connection:

nmap -sT -p 27017 -T5 10.0.64.32,33,34

You'll see the port is opened and the host is up.

Regards,
José Ignacio

Show

José Ignacio Carretero Guarde added a comment - 30/Jan/17 10:44 AM - edited Well, the fact is that it is opened. Just try a simpler nmap command, just trying to stablish a full tcp connection: nmap -sT -p 27017 -T5 10.0.64.32,33,34 You'll see the port is opened and the host is up. Regards, José Ignacio

Hide

Permalink

José Ignacio Carretero Guarde added a comment - 02/Feb/17 7:48 AM

Is the ticket solved?

Show

José Ignacio Carretero Guarde added a comment - 02/Feb/17 7:48 AM Is the ticket solved?

Hide

Permalink

FW External User added a comment - 02/Feb/17 8:52 AM

Comment by federico.facca@martel-consulting.ch :

yes,
thanks!

Show

FW External User added a comment - 02/Feb/17 8:52 AM Comment by federico.facca@martel-consulting.ch : yes, thanks!

People

Assignee:

José Ignacio Carretero Guarde

Reporter:

FW External User

Votes:

0 Vote for this issue

Watchers:

4 Start watching this issue

Dates

Created:

27/Jan/17 1:53 PM

Updated:

27/May/21 10:55 AM

Resolved:

02/Feb/17 9:10 AM

Agile

View on Board