How can I retrieve what ports mesos uses to communicate with the task? Say I change default policies on INPUT, OUTPUT to DROP. How can I retrieve these random port numbers, to enable this traffic? Is there a way to put them in the environment or so?
[@ mesos-cni]# ip netns exec server netstat -tan Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 0.0.0.0:42629 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:8282 0.0.0.0:* LISTEN tcp 0 0 172.16.1.104:42629 172.16.0.1:57110 ESTABLISHED tcp 0 0 172.16.1.104:33222 192.168.10.153:5051 ESTABLISHED [@mesos]# ip netns exec haproxy netstat -tanp Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:36066 0.0.0.0:* LISTEN 583742/mesos-execut tcp 0 0 0.0.0.0:1936 0.0.0.0:* LISTEN 583789/haproxy tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 583789/haproxy tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 583789/haproxy tcp 0 0 0.0.0.0:8888 0.0.0.0:* LISTEN 583789/haproxy tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 583789/haproxy tcp 0 0 127.0.0.1:8888 127.0.0.1:55472 TIME_WAIT - tcp 0 0 127.0.0.1:8888 127.0.0.1:55570 TIME_WAIT - tcp 0 0 192.168.122.240:39104 192.168.10.114:5051 ESTABLISHED 583742/mesos-execut tcp 0 0 192.168.122.240:36066 192.168.10.114:45824 ESTABLISHED 583742/mesos-execut tcp 0 0 192.168.122.240:36066 192.168.10.114:45822 TIME_WAIT - tcp6 0 0 :::5555 :::* LISTEN 583784/dataplaneapi
