Register a CDH cluster reachable through private IP address
You can register CDH clusters that can be reached only through private IP address using a reverseSSH tunnel.
To ensure optimum security, clusters within the customer environment are not accessible for communication. They have private IP addresses and cannot be accessed outside the firewall. However, to add your cluster to the CDP, a communication line needs to be established.
A reverseSSH tunnel solves the problem by establishing a tunnel from the cluster to CDP. You must download and install AutoSSH and the connectivity install scripts to establish a secure two-way communication channel. The AutoSSH ensures that the connectivity is stable. The connectivity scripts and their installation ensure safe connectivity and communication.
The process to register a CDH cluster using a reverseSSH tunnel is as follows:
- On the CDP Management Console, you enter the private IP address of your cluster and provide the cluster details.
- You download the AutoSSH npm from the specified location and the connectivity installation scripts from CDP on to the cluster.
- You install AutoSSH on the cluster.
- You run the connectivity installation scripts to establish a secure channel of communication.
- You verify the connection from CDP to ensure that you are able to access the Cloudera Manager host through the reverse SSH tunnel.
- You register the cluster for performing further operations.
Perform the following steps to add a CDH cluster that is not reachable via public IP address.
- Log in to CDP Management Console.
- Click Classic Clusters in the left navigation panel.
The Classic Clusters page appears.
- Click Add Cluster.
- Click CDH.
- In the dialog box that appears, click No if your cluster is not reachable via public network.
Provide connectivity information.
In the Cluster Information tab that appears, enter the following details.
- Cluster name - Make sure it is the same as the name given while creating the CDH cluster.
- Private IP address - This is the IP address of the host running Cloudera Manager. This address is needed only for identification purposes and will not be used for cluster connectivity. Cluster communication will happen over a reverse SSH tunnel.
- Cloudera Manager port number
- Data Center name
- Click Next.
- In the Cluster Information tab that appears, enter the following details.
Set up the connectivity client.
- Click Download the configuration files. You can also choose to copy the configurations from the text boxes and paste them in the corresponding files in your cluster.
- Download and install the RPM file from the specified location.
- Download and install the connectivity install script. The reverse SSH tunnel is established once this process is complete.
- Click Test Connection to test the connection to the Cloudera Manager host through the reverse SSH tunnel.
- Click Next.
- Register the CDH cluster.
- Enter the username and password of the Cloudera Manager user to access the cluster.
- Click Go.
The cluster name, IP address, and enabled cluster services are displayed.
- Enter the following cluster details for each cluster:
- Cluster Location
- Data Center
- Tags (optional)
- Description (optional)
- Click Submit.