Once installed, the Cryptographic Security Platform and the solutions map the following ports to random ports.
- 80
- 443
- 9444
- 15021
Run the following commands to discover these random ports.
sudo kubectl get service --namespace istio-system istio-ingressgatewaysudo kubectl get service --namespace istio-system additional-ports-serviceFor example:
$ sudo kubectl get service --namespace istio-system istio-ingressgatewayNAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGEistio-ingressgateway LoadBalancer 10.43.86.11 172.21.233.131 15021:23369/TCP,80:12858/TCP,443:42086/TCP 139m$ sudo kubectl get service --namespace istio-system additional-ports-serviceNAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGEadditional-ports-service LoadBalancer 10.43.27.236 10.1.141.139 8444:3863/TCP,9444:63608/TCP,1443:1412/TCP,7443:9108/TCP,8880:21277/TCP,4443:9048/TCP,7773:24560/TCP 62dEnsure that these random ports are not accessible from outside the cluster, as they are used only for internode communication.