Yeah, those rules were for a working Metron cluster on 0.3.0 I believe. Are you looking for a breakdown of rules per component? That's probably the most sane way to approach this because components could be split in different configurations.
I think that the blueprint approach with some manipulation may be the way to go. I wonder if the Ambari team is looking at this sort of use case at all. That said, I think that assumes all of the components are installed via Ambari like the UI, etc. Summary - it looks like this doesn't necessarily exist right now, but I think it should. I would love to have some firewall rules better than a hard shell with a gooey center. Jon On Wed, May 31, 2017, 4:32 AM Ali Nazemian <[email protected]> wrote: > Hi Jon, > > Thanks for the rules you have shared. Actually, my concern is the Metron > use case parts and the corresponding components as follows. I was wondering > how the connectivity works for them. > > -Metron Management UI > -Metron Rest API > -Metron Workflow Rest API > -Metron Alert-UI > -MySQL > -HBase > -Zookeeper > -Storm Supervisor > -Kafka broker > -Elasticsearch Data Nodes > -Kibana > > Cheers, > Ali > > > On Wed, May 31, 2017 at 2:54 AM, Matt Foley <[email protected]> wrote: > >> ➢ It is a shame there isn’t a reporting tool for ambari, that can query >> all the configurations in the database and report out ports and hosts……. >> >> There is. If you configure a “happy” cluster with Ambari, then tell >> Ambari to generate a blueprint, that will tell you the actual as-built >> values for all configuration parameters controlled by Ambari. Of course >> there’s a lot of other stuff too, but the full config is there. >> >> Blueprint docs are at >> https://cwiki.apache.org/confluence/display/AMBARI/Blueprints >> The API to export the current blueprint is at >> https://cwiki.apache.org/confluence/display/AMBARI/Blueprints#Blueprints-Step1:CreateBlueprint >> The structure of the blueprint and config elements are in >> https://cwiki.apache.org/confluence/display/AMBARI/Blueprints#Blueprints-BlueprintDetails >> >> Cheers, >> >> >> --Matt >> >> From: Otto Fowler <[email protected]> >> Reply-To: "[email protected]" <[email protected]> >> Date: Tuesday, May 30, 2017 at 6:17 AM >> To: Alex McLintock <[email protected]>, "[email protected]" < >> [email protected]> >> Subject: Re: Metron components connectivity >> >> It is a shame there isn’t a reporting tool for ambari, that can query all >> the configurations in the database and report out ports and hosts……. >> >> >> On May 30, 2017 at 08:34:42, Alex McLintock ([email protected]) wrote: >> I have attempted to do this for just HDP and it is rather difficult. One >> of the main problems is that any documentation will point you towards >> default ports for Hadoop - which are not always the ports chosen by >> Hortonworks for HDP. You probably need to look mostly at the ports >> specified in your config files. >> >> I would suggest that you treat all HDP nodes as able to talk to each >> other across all ports - but limit anything which talks to those nodes. >> That is a lot easier. >> >> >> On 30 May 2017 at 10:49, Ali Nazemian <[email protected]> wrote: >> Hi all, >> >> For deploying Metron in production, we need to specify all of the port >> and protocols connectivities. I was wondering how Metron components >> connected to each other. Is there any document available regarding the >> ports and connectivities of Metron components? >> >> Regards, >> Ali >> >> >> >> >> -- >> Want the best UK suppliers? Visit http://SocialConsumer.co.uk/ Draw to >> win £50 >> >> >> >> > > > -- > A.Nazemian > -- Jon
