Networking Requirements
Overview
Components deployed inside locally-hosted infrastructure need to communicate with other components over the network. This page provides a list of ports that need to be open for the communication to work properly.
Ports used by TIM v5
- Kubernetes -> PostgreSQL
- 5432 TCP
- Kubernetes -> Kubernetes (communication between all pods running in tim-platform namepsace)
- 80 TCP+UDP
- 443 TCP+UDP
- 5672 TCP+UDP
- 15672 TCP+UDP
- 5000 TCP+UDP
- 8000 TCP+UDP
- 8071 TCP+UDP
- 8073 TCP+UDP
- 8080 TCP+UDP
- Kubernetes -> Internet (this traffic goes through the internet!)
- https://tim-platform-im.tangent.works 443 TCP
- euwestacrtangentworks01.azurecr.io 443 TCP
- *.docker.io 443 TCP
- *.docker.com 443 TCP
- Administrator's PC -> Kubernetes
- 443 TCP+UDP
- 6443 TCP
- 2379 TCP
- 2380 TCP
- Administrator's PC -> PostgreSQL
- 5432 TCP
- Internet -> Kubernetes
- (Optional) 443 TCP
Note: Administrator's PC is a machine from which TIM v5 installation and management is happening. It can be a developer's PC or a virtual machine in the cloud (jump server).
Kubernetes features used by TIM v5
TIM v5 requires DNS Resolution feature to be enabled and running in the Kubernetes cluster. The following command can be used to check if DNS is enabled and running: kubectl get pods --namespace=kube-system -l k8s-app=kube-dns. Please note that there should be one coredns pod running on each node in the cluster.