We have a content host in the DMZ that we want to update from within the LAN.
What ports and what directionality do we need to have open for minimal update application?
I have seen this post from 2015, which refers to Katello 2.x and to an image that is no longer available.
So I thought I’d ask for an update? Is it still just 5647 and 8443?
Yes.
5647 – used for qoferd traffic when doing remote actions not via REX
8443 – used for content, talking back to main server
If you are using remote execution you’ll need SSH port open as well. If you don’t use goferd for remote install/update actions then you won’t need 5647.
RedHat documentation provides a full list of port requirements : https://access.redhat.com/documentation/en-us/red_hat_satellite/6.3/html/installation_guide/preparing_your_environment_for_installation#ports_prerequisites