<div>[Just a bit of context, some of this conversation happened off list--I'm trying to start a rabbitmq cluster on some firewalled EC2 instances, and Emile has been helping me identify all the details about ports and configuration and all that good stuff.]</div>
<div><br></div><div>We're looking to open fewer ports, not more.<i>�</i>Is there a minimum we could do? Would one work, or would it break something else?<div><br></div><div>Also,�we have these ports open to all TCP.��In the spirit of securing our systems, I guess we could open 4369 only to the IPs of the other machines in the cluster. Is that a good idea? Can you think of more firewall restrictions to add?</div>
<div class="yj6qo ajU" style="outline-style:none;outline-width:initial;outline-color:initial;padding-top:10px;padding-right:0px;padding-bottom:10px;padding-left:0px;width:22px;margin-top:2px;margin-right:0px;margin-bottom:0px;margin-left:0px">
<div id=":19a" class="ajR" tabindex="0" style="background-color:rgb(241,241,241);border-top-width:1px;border-right-width:1px;border-bottom-width:1px;border-left-width:1px;border-top-style:solid;border-right-style:solid;border-bottom-style:solid;border-left-style:solid;border-top-color:rgb(221,221,221);border-right-color:rgb(221,221,221);border-bottom-color:rgb(221,221,221);border-left-color:rgb(221,221,221);clear:both;line-height:6px;outline-style:none;outline-width:initial;outline-color:initial;width:20px">
<img class="ajT" src="https://mail.google.com/mail/images/cleardot.gif" style="background-image: url(https://ssl.gstatic.com/ui/v1/icons/mail/ellipsis.png); background-attachment: initial; background-origin: initial; background-clip: initial; background-color: initial; height: 8px; opacity: 0.3; width: 20px; background-position: initial initial; background-repeat: no-repeat no-repeat; "></div>
</div><div class="adL"></div><div class="adL"><div><div><div class="adm" style="margin-top:5px;margin-right:0px;margin-bottom:5px;margin-left:0px"></div><div class="im" style="color:rgb(80,0,80)"><br style><div class="gmail_quote" style>
On Fri, Mar 16, 2012 at 5:24 AM, Emile Joubert�<span dir="ltr"><<a href="mailto:emile@rabbitmq.com" target="_blank" style="color:rgb(17,85,204)">emile@rabbitmq.com</a>></span>�wrote:<br><blockquote class="gmail_quote" style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">
Hi John,<br><div><br>On 16/03/12 05:41, John Stoner wrote:<br>> OK, I got it to start with a good config file. what's an appropriate<br>> range for these port numbers?<br><br></div>You are free to use any unused port range between 1024 and 65536.<br>
<font color="#888888"><br><br>-Emile<br><br></font></blockquote></div><br style><br clear="all" style></div></div></div></div></div>-- <br>blogs:<br><a href="http://johnstoner.wordpress.com/" target="_blank">http://johnstoner.wordpress.com/</a><br>
'In knowledge is power; in� wisdom, humility.' <br>