...
Various communications take place in a cluster, with their connections requiring specific ports being opened in the firewall. The following table represents our situation.
| Node | Open ports |
|---|---|
| wifimon-node{1,2,3}.rash.al | 9200/tcp, 9300/tcp |
| wifimon-kibana.rash.al | 9200/tcp, 9300/tcp, 5601/tcp |
| wifimon-logstash.rash.al | 5044/tcp |
Port 9200/tcp is used to query the cluster using the Elasticsearch REST API. Port 9300/tcp is used for internal communication between cluster nodes. Port 5044/tcp is where Logstash listens for beats of log events sent from Filebeat. Port 5601/tcp is used to access Kibana platform from the browser.
...
| Code Block |
|---|
/etc/elasticsearch/certs/
├── ca.crt
├── kibana.crt
└── kibana.key
/etc/kibana/certs/
├── ca.crt
├── kibana.crt
└── kibana.key |
...