DNA Center - Cluster Ports

mbrandon32 · ‎06-09-2021

I am not finding this information anywhere but what are the specific ports that are required for cluster communication within DNA Center? I checked the ports that are listening on the servers themselves but am not able to tie those back to any documentation.

balaji.bandi · ‎06-09-2021

Hope you mean Physical ports or Communication port ?

Physcal check the device installation guide : (same for all models) - 10GBPS cluster port (green Color in the picture).

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/1-2/install/b_dnac_install_1_2/b_dnac_install_1_2_chapter_0101.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

rasmus.elmholt · ‎06-10-2021

Hi,

There should not be any firewall between the cluster nodes, and according to the security guide the cluster network should be an isolated subnet/network:

"In clustered mode, Cisco DNA Center nodes communicate with each other through the intracluster network. No separate encryption is applied to the intracluster traffic. It is important to keep the intracluster network isolated."

"If deploying Cisco DNA Center in a three-node cluster setup, verify that the cluster interfaces are connected in an isolated network."

https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/hardening_guide/b_dnac_security_best_practices_guide.html