- 80: Default http port. Only used during SSL certification generation with https://letsencrypt.org/. If you intend to provide your own SSL certificates this port is optional.
- 443: Default https port. Used for the rest of traffic.
- Zylon Port 80 ↔ Host port 80
- Zylon Port 443 ↔ Host port 443
- 22: SSH port. During installation and initial setup, this port should be open so your IT team or Zylon operations team can help you get the application running. As a general security practice, you should close this port as soon as the installation is complete.
- 6443: Kubernetes API service. To help our team further debug your installation, you can also open port 6443 temporarily. All connections to the Kubernetes service are authenticated, having this port open does not put your data at risk. During the time the port is open it will allow Zylon Operations team to access your machine.
DNS configuration
The following requirements are needed for Zylon to work:- Choose a domain for Zylon, for example:
zylon.company.com.A domain name is required for a secure connection. - Configure DNS entries so
zylon.company.compoint to the machine that has Zylon installed
- The web application is running locally in the user’s web browser.
- The server is running in the machine where it was installed.
- You MUST configure SSL/HTTPS yourself or delegate Zylon to automatically do it for you
- Do NOT activate SSL redirect unless you plan to provide custom SSL certificates.
host parameter in the configuration (for example zylon.company.com)
Example DNS configuration
Zylon is installed in a machine with IP32.41.12.123 . Your DNS entry could look like the following: