Firewall
Firewall services such as firewalld, ufw and iptables can be installed on different Debian/Ubuntu systems, sometimes they are even installed by default on Red Hat and CentOS.
In order for the components of the PureLife Cloud Instance to be able to communicate with each other, the firewall must enable the following communication paths.
|
Source of connection |
Destination of the connection |
Ports |
Description |
|---|---|---|---|
|
Browser |
PureLife Cloud |
8080 |
Cloud Frontend |
|
Sensors |
PureLife Cloud |
8080 |
Initial connection setup |
|
Sensors |
MQTT |
1883 |
Communication with sensors |
|
PureLife Cloud |
MQTT |
1883 |
Communication with PureLife Cloud |
|
PureLife Cloud |
Nginx |
9090 |
File management for sensors |
|
PureLife Cloud |
PostgreSQL |
5432 |
Database, under Docker the connection is established via the Docker Interface |
|
Alternatively encrypted communication |
|||
|
Sensors |
MQTTS |
8883 |
Secure communication with sensors |
|
PureLife Cloud |
MQTTS |
8883 |
Secure communication with PureLife Cloud |
|
Optional |
|||
|
GRPC client |
GRPC server |
10000 |
GRPC server for the GRPC client |
|
GRPC client |
GRPC server |
10001 |
GRPC server for MQTT-Auth, under Docker the connection is established via the Docker Interface |