Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This section provides a high-level overview of setting up a storage cluster in your network.

...

  • To present a cluster as a read-only device to external clients, block the POST and DELETE requests to prevent updates to the cluster.
  • To prevent client access to the Node Status window in the Swarm Admin Console, configure the firewall to deny "GET /" requests to the cluster nodes.
  • To prevent unauthorized access to the Swarm Admin Console, block Internet access to the Swarm Admin Console port (default TCP port 90) and the SNMP port (UDP port 161). Wide area networks (WANs) may require additional restrictions to prevent access to specific administrative networks or workstations.
  • To minimize the client impact of hardware failures, deploy devices in redundant pairs when adding security devices such as firewalls into the network architecture.