/
How to Use Port90 Proxy Container on Swarm Cluster Services (SCS)

How to Use Port90 Proxy Container on Swarm Cluster Services (SCS)

For SCS installations where a Content Gateway deployment is not feasible, the Swarm Storage UI is not available to view a Swarm cluster as the Swarm Storage UI software resides on a Content Gateway.

DataCore's best suggestion for viewing a cluster and managing settings is to configure a Content Gateway with Swarm Storage UI, also called a Service Proxy, co-resident on that gateway. In the event that is not possible, Swarm storage nodes support a basic HTTP interface available using TCP port90 on every node (hereafter referred to as the port90 console). This port90 interface allows a user to see a view of the entire cluster and manage several features like Swarm Search and Replication feeds, along with changing the logging level. Settings not available to be changed via the port90 interface can typically be managed with swarmctl.

If the features of the port90 console are all that are required for visibility to a Swarm cluster, and a Content Gateway is not available, an additional container can be installed on the SCS server to provide visibility to the privately addressed Swarm cluster. The effect is to proxy requests (using port 8090, for example) from the public side of the SCS server to port90 on a Swarm storage node on the private side of the SCS server. This allows visibility and manageability of the cluster using the SCS server without an additional Content Gateway deployment.

How to Enable Port90 Proxy through SCS

  1. Edit /etc/firewalld/zones/public.xml or (swarm-site.xml whichever has the other port rules) and add a rule to allow port 8090 requests. The remainder of the instructions assume port 8090 is used. The result resembles:

    <?xml version="1.0" encoding="utf-8"?> <zone> <short>Public</short> <description>For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.</description> <service name="ssh"/> <service name="dhcpv6-client"/> <port protocol="tcp" port="8009"/> <port protocol="tcp" port="8080"/> <port protocol="tcp" port="8081"/> <port protocol="udp" port="123"/> <port protocol="udp" port="514"/> <port protocol="tcp" port="514"/> <port protocol="tcp" port="8090"/> <masquerade/> </zone>
  2. Reload the firewall rules:

    firewall-cmd --reload
  3. OPTIONAL: if your SCS has internet access, you can skip this step and proceed to step 4. Download the container scs-container-port90-console.tar.gz her