Globus Connect Server version 4 ufw Configuration
If you are running a Linux distribution that includes ufw, you can use a few simple commands to configure the firewall.
Each of the commands below assumes you are running them as root. If you are
running these commands as a non-root user, prefix each command with sudo
.
Firewall Rules
-
Begin by allowing anyone to connect to open GridFTP data ports:
ufw allow proto tcp to any port 50000:51000
ufw allow proto udp to any port 50000:51000
-
Allow Globus IPs to connect to the MyProxy port:
ufw allow in from 54.237.254.192/29 to any port 7512 proto tcp
-
Allow access for GridFTP control traffic, from Globus only:
ufw allow in from 54.237.254.192/29 to any port 2811 proto tcp
No other commands should be needed, and the changes should take effect immediately.
Your inbound firewall configuration is now complete! You should now go back and continue to the installation procedure.