端口 54663(bamboo tcp 端口)的连接问题
Problem connectivity issue to port 54663 (bamboo tcp port)
我用 docker-compose 安装了 bamboo,这里是定义:
...
bamboo:
image: atlassian/bamboo-server
container_name: bamboo
restart: always
volumes:
- ./bamboo:/var/atlassian/application-data/bamboo
ports:
- 8085:8085
- 54663:54663
...
端口 8085 的连接正常,我通过 nmap 收到此输出:
# nmap 91.98.96.204 -p8085
Starting Nmap 7.80 ( https://nmap.org ) at 2021-07-05 15:28 UTC
Nmap scan report for mail.***.com (**.***.**.***)
Host is up (0.13s latency).
PORT STATE SERVICE
8085/tcp open unknown
Nmap done: 1 IP address (1 host up) scanned in 0.32 seconds
但我对 54663 有疑问。
# nmap 91.98.96.204 -p54663
Starting Nmap 7.80 ( https://nmap.org ) at 2021-07-05 15:40 UTC
Nmap scan report for mail.***.com (**.***.**.***)
Host is up (0.13s latency).
PORT STATE SERVICE
54663/tcp closed unknown
Nmap done: 1 IP address (1 host up) scanned in 0.33 seconds
我正在使用 ufw 并且规则定义正确:
# ufw status
Status: active
To Action From
-- ------ ----
8085/tcp ALLOW Anywhere
54663/tcp ALLOW Anywhere
...
8085/tcp (v6) ALLOW Anywhere (v6)
54663/tcp (v6) ALLOW Anywhere (v6)
...
服务器54663端口监听状态正常:
# netstat -an | grep 54663
tcp6 0 0 :::54663 :::* LISTEN
这是我的 iptables 数据包传输前后的差异:
# diff Sample1 Sample2
1c1
< Chain INPUT (policy ACCEPT 9 packets, 360 bytes)
---
> Chain INPUT (policy ACCEPT 10 packets, 400 bytes)
6,8c6,8
< 180K 9856K ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
< 180K 9856K ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
< 180K 9856K ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
---
> 180K 9857K ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
> 180K 9857K ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
> 180K 9857K ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
65c65
< 5672K 340M ACCEPT all -- br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 0.0.0.0/0
---
> 5673K 340M ACCEPT all -- br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 0.0.0.0/0
127,128c127,128
< 68748 3877K ACCEPT tcp -- !br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 172.18.0.26 tcp dpt:80
< 15 676 ACCEPT tcp -- !br-0f9a0f7345b4 br-0f9a0f7345b4 0.0.0.0/0 192.168.48.2 tcp dpt:54663
---
> 68755 3877K ACCEPT tcp -- !br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 172.18.0.26 tcp dpt:80
> 16 720 ACCEPT tcp -- !br-0f9a0f7345b4 br-0f9a0f7345b4 0.0.0.0/0 192.168.48.2 tcp dpt:54663
190c190
< 86160 12M ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
---
> 86162 12M ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
229c229
< 39016 2581K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
---
> 39017 2581K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
265c265
< 96024 13M RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
---
> 96026 13M RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
对于那些进入这个post的人,我找到了我的解决方案:
Broker URL 必须设置为 0.0.0.0:54663,在 settings > system > general cofiguration
我用 docker-compose 安装了 bamboo,这里是定义:
...
bamboo:
image: atlassian/bamboo-server
container_name: bamboo
restart: always
volumes:
- ./bamboo:/var/atlassian/application-data/bamboo
ports:
- 8085:8085
- 54663:54663
...
端口 8085 的连接正常,我通过 nmap 收到此输出:
# nmap 91.98.96.204 -p8085
Starting Nmap 7.80 ( https://nmap.org ) at 2021-07-05 15:28 UTC
Nmap scan report for mail.***.com (**.***.**.***)
Host is up (0.13s latency).
PORT STATE SERVICE
8085/tcp open unknown
Nmap done: 1 IP address (1 host up) scanned in 0.32 seconds
但我对 54663 有疑问。
# nmap 91.98.96.204 -p54663
Starting Nmap 7.80 ( https://nmap.org ) at 2021-07-05 15:40 UTC
Nmap scan report for mail.***.com (**.***.**.***)
Host is up (0.13s latency).
PORT STATE SERVICE
54663/tcp closed unknown
Nmap done: 1 IP address (1 host up) scanned in 0.33 seconds
我正在使用 ufw 并且规则定义正确:
# ufw status
Status: active
To Action From
-- ------ ----
8085/tcp ALLOW Anywhere
54663/tcp ALLOW Anywhere
...
8085/tcp (v6) ALLOW Anywhere (v6)
54663/tcp (v6) ALLOW Anywhere (v6)
...
服务器54663端口监听状态正常:
# netstat -an | grep 54663
tcp6 0 0 :::54663 :::* LISTEN
这是我的 iptables 数据包传输前后的差异:
# diff Sample1 Sample2
1c1
< Chain INPUT (policy ACCEPT 9 packets, 360 bytes)
---
> Chain INPUT (policy ACCEPT 10 packets, 400 bytes)
6,8c6,8
< 180K 9856K ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
< 180K 9856K ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
< 180K 9856K ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
---
> 180K 9857K ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
> 180K 9857K ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
> 180K 9857K ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
65c65
< 5672K 340M ACCEPT all -- br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 0.0.0.0/0
---
> 5673K 340M ACCEPT all -- br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 0.0.0.0/0
127,128c127,128
< 68748 3877K ACCEPT tcp -- !br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 172.18.0.26 tcp dpt:80
< 15 676 ACCEPT tcp -- !br-0f9a0f7345b4 br-0f9a0f7345b4 0.0.0.0/0 192.168.48.2 tcp dpt:54663
---
> 68755 3877K ACCEPT tcp -- !br-83aa54bad204 br-83aa54bad204 0.0.0.0/0 172.18.0.26 tcp dpt:80
> 16 720 ACCEPT tcp -- !br-0f9a0f7345b4 br-0f9a0f7345b4 0.0.0.0/0 192.168.48.2 tcp dpt:54663
190c190
< 86160 12M ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
---
> 86162 12M ufw-skip-to-policy-input all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
229c229
< 39016 2581K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
---
> 39017 2581K ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8
265c265
< 96024 13M RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
---
> 96026 13M RETURN all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
对于那些进入这个post的人,我找到了我的解决方案:
Broker URL 必须设置为 0.0.0.0:54663,在 settings > system > general cofiguration