Why does the Rancher Security Group use TCP Port 10256?



  • What does TCP 10256 do and where is to documented. According to the https://rancher.com/docs/rancher/v2.5/en/installation/requirements/ports/#rancher-aws-ec2-security-group it's open. But I don't see any documentation on port 10256 elsewhere.

    It's also documented on the similar https://rancher.com/docs/rancher/v2.6/en/cluster-provisioning/rke-clusters/node-pools/azure/azure-machine-config/



  • According to https://github.com/rancher/rke/issues/212 it is used for kubeproxy.

    The Kubernetes network proxy runs on each node. This reflects services as defined in the Kubernetes API on each node and can do simple TCP, UDP, and SCTP stream forwarding or round robin TCP, UDP, and SCTP forwarding across a set of backends. Service cluster IPs and ports are currently found through Docker-links-compatible environment variables specifying ports opened by the service proxy. There is an optional addon that provides cluster DNS for these cluster IPs. The user must create a service with the apiserver API to configure the proxy.

    References
    https://kubernetes.io/docs/reference/command-line-tools-reference/kube-proxy/




Suggested Topics

  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2