Answered Webspeed server to IIS (or other) server - outbound UDP ports

#1
Hi

Referencing this knowledge base article
KB

States a huge range of UDP ports are required outbound from Webspeed (Nameserver) to say an IIS server.

Thing is I've never enabled these through a firewall (on multiple products 10.x to 11.x) and it works fine.

Anybody know what they are (were?) meant to do.

Thanks

Chris.
 

Rob Fitzpatrick

ProgressTalk.com Sponsor
#2
The messenger and agents use TCP for messaging. I believe you only need UDP if you are using the Name Server. When we use WebSpeed, we don't do that as our installations are not load-balanced; there is only a single broker. A Name Server serves no purpose in that scenario and adds overhead to every request.

For firewall configuration we just allow inbound (DMZ to WS box) rules for the WebSpeed broker port and for the port range specified for the WebSpeed agents (all TCP).
 

RealHeavyDude

Well-Known Member
#3
The only product that talks UDP is the NameServer. If you don't need the NameServer ( for load balancing or discovering the AppServers and WebSpeed brokers ) then you don't need UDP. Even with the classic AppServer, the only thing that needs the NameServer is load balancing. You can directly connect to the AppServer broker without the need of a NameServer.
 
#4
Off I go to dump the nameserver then (after some testing to figure out how) - like the idea of being faster :)

I'll mark as answered, but if anyone ever picks this question up and understands the UDP part please share.

Thank you both - an education as always!
 

Rob Fitzpatrick

ProgressTalk.com Sponsor
#5
Off I go to dump the nameserver then (after some testing to figure out how)
This should be covered in the Application Server Administration manual. Look for Configuring a CGI Messenger.

Right now your messenger script is probably configured to use a service name that is defined in ubroker.properties. You can configure it instead to specify a hostname and port number. This is how it will bypass the NameServer and connect directly to the WebSpeed broker.

There are some KB articles of various vintages that talk about this. E.g.:
How to configure CGIIP messenger to talk directly to the WebSpeed Broker?

Closing thoughts:
  • Make sure you configure WebSpeed for Production Mode!
    Running WebSpeed in Production Mode
  • WebSpeed support is ending; maybe as soon as OE 12.0. You should be planning your migration strategy from WebSpeed and/or "classic" App Server to PASOE now.
 
Top