Network
Control Center relies heavily on Kafka, so a fast and reliable network is important for performance. Modern datacenter
networking speed of 1 GbE, 10 GbE should be sufficient.
Ports
The table below lists the network services and ports exposed as part of
Confluent Platform.
All services listed below use the TCP protocol.
All ports listed below are the default ports, and in most cases you can
configure each service to listen on a different port of your choice.
Ports that are indicated to be Internal Only need to be accessible by
components within Confluent Platform, not by users or clients of the platform.
When deploying Confluent Platform, ensure that your networking rules allow for the required
access to the various components and services.
Component and Service |
Default Port |
Internal Only? |
ZooKeeper |
|
|
- Peer-to-peer communication
|
2888 |
Yes |
- Peer-to-peer communication
|
3888 |
Yes |
|
2181 |
No |
|
2182 |
No |
|
7770 |
No |
Kafka Broker |
|
|
|
9091 |
Yes |
|
9092 |
No |
|
8090 |
No |
- Confluent Server REST API
|
8090 |
No |
|
7771 |
No |
(Standalone) REST Proxy |
8082 |
No |
Confluent Control Center |
9021 |
No |
Kafka Connect |
|
|
|
8083 |
No |
|
7773 |
No |
ksqlDB Server |
|
|
|
8088 |
No |
|
7774 |
No |
Schema Registry |
|
|
|
8081 |
No |
|
7772 |
No |
[*] Reserve the Jolokia ports only when you deploy Confluent Platform using Ansible.
Synchronize time
Clock synchronization on each Kafka broker is required to ensure the full system functions
correctly. For example, secure network communication with the brokers that rely on
TLS certificate verification may fail if clocks are not synchronized. Clock synchronization
can be achieved using utilities like ntpd
that implement the Network Time Protocol (NTP).