Uploaded image for project: 'DC/OS'
  1. DC/OS
  2. DCOS_OSS-4184

Mesos offers ports that are already in use

    Details

    • Type: Bug
    • Status: Accepted
    • Priority: Medium
    • Resolution: Unresolved
    • Affects Version/s: DC/OS 1.9.10, DC/OS 1.10.8, DC/OS 1.11.5, DC/OS 1.12.0, DC/OS 1.13.0
    • Fix Version/s: None
    • Component/s: mesos, networking
    • Sprint:
      Core Sprint 2018-29, Core RI-6 Sprint 2018-30
    • Story Points:
      5

      Description

      The port ranges that allocated for Mesos to offer to frameworks, do not take into account all the ports that are used by the DC/OS components. Please refer to https://github.com/dcos/dcos/blob/ec599b00cdf4b7df90a364d2a6712476cfd34f8b/gen/dcos-config.yaml#L604

        - path: /etc/mesos-slave
          content: |
            MESOS_RESOURCES=[{"name":"ports","type":"RANGES","ranges": {"range": [{"begin": 1025, "end": 2180},{"begin": 2182, "end": 3887},{"begin": 3889, "end": 5049},{"begin": 5052, "end": 8079},{"begin": 8082, "end": 8180},{"begin": 8182, "end": 32000}]}}]
        - path: /etc/mesos-slave-public
          content: |
            MESOS_RESOURCES=[{"name":"ports","type":"RANGES","ranges": {"range": [{"begin": 1, "end": 21},{"begin": 23, "end": 5050},{"begin": 5052, "end": 32000}]}}]
      

      dcos-net uses port 53, and on `slave_public` agent nodes Mesos is allowed to offer this port to frameworks, and if a framework decides to use it, a task will fail upon launch.

      core@ip-10-0-7-47 ~ $ sudo netstat -ntulp | grep :53
      tcp        0      0 198.51.100.3:53         0.0.0.0:*               LISTEN      4948/dcos-net       
      tcp        0      0 198.51.100.2:53         0.0.0.0:*               LISTEN      4948/dcos-net       
      tcp        0      0 198.51.100.1:53         0.0.0.0:*               LISTEN      4948/dcos-net       
      tcp6       0      0 fd01:d::c633:6401:53    :::*                    LISTEN      4948/dcos-net       
      udp        0      0 198.51.100.3:53         0.0.0.0:*                           4948/dcos-net       
      udp        0      0 198.51.100.2:53         0.0.0.0:*                           4948/dcos-net       
      udp        0      0 198.51.100.1:53         0.0.0.0:*                           4948/dcos-net       
      udp6       0      0 fd01:d::c633:6401:53    :::*                                4948/dcos-net
      

      We need to make sure that all the ports that are used by the DC/OS components are excluded from the port ranges that Mesos offers to frameworks.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                bennoevers Benno Evers
                Reporter:
                ivanchernetsky Ivan Chernetsky
                Team:
                Mesos Team
                Watchers:
                Benno Evers, Ivan Chernetsky, Senthil Kumaran, Sergey Urbanovich
              • Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: