forked from jasonkeene/docs-rabbitmq-staging
-
Notifications
You must be signed in to change notification settings - Fork 0
/
about.html.md.erb
150 lines (135 loc) · 4.84 KB
/
about.html.md.erb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
---
title: On-Demand Service Architecture
owner: London Services
---
This topic describes the architecture for on-demand <%= vars.product_full %>.
For information about architecture of the older, pre-provisioned service, see
[Deploying the <%= vars.product_short %> Service](./deploying.html).
<h2> <a id="service-network"></a>Service Network Requirement </h2>
<%# The below partial is in https://github.com/pivotal-cf/docs-partials %>
<%= partial vars.path_to_partials + '/services/service-networks-v3' %>
<h2> <a id ="on-demand"></a>Default Network and Service Network </h2>
<%# The below partial is in https://github.com/pivotal-cf/docs-partials %>
<%= partial vars.path_to_partials + '/services/on_demand_architecture', :locals => {
:product_short => vars.product_short} %>
<h2> <a id="network-rules"></a>Required Networking Rules for On-Demand Services </h2>
<%# The below partial is in https://github.com/pivotal-cf/docs-partials %>
<%= partial vars.path_to_partials + '/services/service_networks_table', :locals => {
:app_runtime_full => vars.app_runtime_full,
:product_short => "RabbitMQ"} %>
<br>
Regardless of the specific network layout, the operator must ensure network rules are set up so that
connections are open as described in the table below.
<table class="nice">
<th>Source Component</th>
<th>Destination Component</th>
<th>Default TCP Port</th>
<th>Notes</th>
<tr>
<td><strong>ODB</strong></td>
<td>
<strong>BOSH Director</strong><br><br>
<strong>BOSH UAA</strong>
</td>
<td>
25555 (BOSH Director)<br><br>
8443 (UAA)<br><br>
8844 (CredHub)<br><br>
</td>
<td>The default ports are not configurable.</td>
</tr>
<tr>
<td><strong>ODB</strong></td>
<td><strong>Deployed service instances</strong>
</td>
<td>
15672 (RabbitMQ Management UI)<br><br>
15671 (RabbitMQ Management UI over TLS)<br><br>
</td>
<td>This connection is for administrative tasks.<br><br>
Avoid opening general use, app-specific ports for this connection.</td>
</tr>
<tr>
<td><strong>ODB</strong></td>
<td><strong><%= vars.app_runtime_full %> (<%= vars.app_runtime_abbr %>)</strong>
</td>
<td>8443 (UAA)</td>
<td>The default port is not configurable.</td>
</tr>
<tr>
<td><strong>Errand VMs</strong></td>
<td>
<strong><%= vars.app_runtime_abbr %></strong><br><br>
<strong>ODB</strong><br><br>
<strong>Deployed Service Instances</strong><br><br>
</td>
<td>
8443 (UAA)<br><br>
8080<br><br>
15672 (RabbitMQ Management UI)<br><br>
15671 (RabbitMQ Management UI over TLS)<br><br>
5672 (AMQP)<br><br>
5671 (AMQPS)<br><br>
</td>
<td>The default port is not configurable.</td>
</tr>
<tr>
<td><strong>BOSH Agent</strong></td>
<td><strong>BOSH Director</strong>
</td>
<td>4222</td>
<td>The BOSH Agent runs on every VM in the system, including the BOSH Director VM.<br><br>
The BOSH Agent initiates the connection with the BOSH Director.<br><br>
The default port is not configurable.<br><br>
The communication between these components is two-way.</td>
</tr>
<tr>
<td><strong>Deployed apps on <%= vars.app_runtime_abbr %></strong></td>
<td><strong>Deployed service instances</strong>
</td>
<td>
15672 (RabbitMQ Management UI)<br><br>
15671 (RabbitMQ Management UI over TLS)<br><br>
5672 (AMQP)<br><br>
5671 (AMQPS)<br><br>
61613 (STOMP)<br><br>
61614 (STOMPS)<br><br>
15674 (Web STOMP)<br><br>
15673 (Web STOMPS)<br><br>
1883 (MQTT)<br><br>
8883 (MQTTS)<br><br>
15675 (Web MQTT)<br><br>
15676 (Web MQTTS)<br><br>
</td>
<td>This connection is for general use, app-specific tasks.<br><br>
Avoid opening administrative ports for this connection.</td>
</tr>
<tr>
<td><strong><%= vars.app_runtime_abbr %></strong></td>
<td><strong>ODB</strong>
</td>
<td>8080</td>
<td>This port might be different for individual services.<br><br>
This port might also be configurable by the operator if allowed by the
tile developer.</td>
</tr>
<tr>
<td><strong>Deployed apps on <%= vars.app_runtime_abbr %></strong></td>
<td><strong>Runtime CredHub</strong>
</td>
<td>8844 (CredHub)</td>
<td>This port is needed if secure binding credentials are enabled.
</td>
</tr>
<tr>
<td><strong><%= vars.app_runtime_abbr %></strong></td>
<td><strong>Deployed service instances</strong>
</td>
<td>
15692 (RabbitMQ Prometheus plugin)<br><br>
</td>
<td>This connection is enables Prometheus to collect metrics from RabbitMQ nodes. <br><br>
For more information, see the
<a href="https://www.rabbitmq.com/prometheus.html">RabbitMQ documentation</a>.</td>
</tr>
</table>