Problem:
We opened the firewall ports according to the 3.17 Katello docs, 80, 443, 5647 and 9090. After installing a smart proxy we see the following errors in the smart proxy /v/l/m:
SERVER (info) [C14868] Connection to foreman.local.lan:5646 failed: proton:io No route to host - disconnected foreman.local.lan:5646
After opening port 5646/tcp on the foreman server, the errors went away and we have this:
Connection Opened: dir=out host=foreman.local.lan:5646 vhost= encrypted=TLSv1/SSLv3 auth=ANONYMOUS user=(null) container_id=foreman.local.lan props={:product="qpid-dispatch-router", :version="1.14.0", :"qd.conn-id"=3}
Expected outcome:
The documentation should list port 5646/tcp in addition to 5647/tcp for Smart Proxy communication.
Foreman and Proxy versions:
Foreman 2.2.1, Katello 3.17
Foreman and Proxy plugin versions:
Distribution and version:
CentOS 7.9
Other relevant data:
Current doc extract:
## Required Ports
The following ports need to be open to external connections:
* 80 TCP - HTTP, used for provisioning purposes
* 443 TCP - HTTPS, used for web access and api communication
* 5647 TCP - qdrouterd - used for client and Smart Proxy actions
* 9090 TCP - HTTPS - used for communication with the Smart Proxy