cdp-doctor network status (on FreeIPA Nodes)

Scope

The cdp-doctor network status command performs a comprehensive network connectivity and accessibility check for a Cloudera node. It validates that the node can resolve DNS queries, reach required Cloudera endpoints, and communicate with control-plane and service APIs essential for CDP operation.

This command helps verify that all required external and internal network dependencies are functioning correctly, ensuring smooth interaction with Cloudera Cloud Services.

Use Case

Performing pre-deployment network validation for Data Lakes or Data Hubs.
Diagnosing connectivity issues with Cloudera Control Plane or monitoring services.
Validating DNS and internet reachability after configuration changes or proxy updates.
Ensuring cloud region endpoints (DataBus, Monitoring APIs) are accessible.

Sample Output

Running the cdp-doctor network status command displays the following output:

[START network checks for node default-aws-aw-dl-master0]
+-----------------------------------------+-----------------------------------------------------------+
|              DNS resolvers              |                       ['127.0.0.1']                       |
|       cloudera.com is accessible        |                           True                            |
|       Compute monitoring API URL        | https://receive.api.monitoring.us-west-1.cdp.cloudera.com |
|  Compute monitoring API is accessible   |                           True                            |
|   archive.cloudera.com is accessible    |                           True                            |
| Service Delivery S3 Cache is accessible |                           True                            |
|           DataBus API address           |       https://dbusapi.us-west-1.altus.cloudera.com        |
|        DataBus API is accessible        |                           True                            |
|           DataBus S3 endpoint           |        https://cloudera-dbus-prod.s3.amazonaws.com        |
|      DataBus S3 URL is accessible       |                           True                            |
|                   CCM                   |                         disabled                          |
+-----------------------------------------+-----------------------------------------------------------+


Dependency	Description
DNS Resolvers	Lists the DNS servers configured on the node (e.g., 127.0.0.1 or external resolvers). Ensures that hostname resolution works properly.
cloudera.com accessibility	Confirms internet and domain reachability. Used to verify external network access.
Compute Monitoring API URL	Displays the endpoint for telemetry and monitoring data ingestion.
Compute Monitoring API accessibility	Verifies the node can send monitoring data to Cloudera's regional endpoint.
archive.cloudera.com	Checks accessibility to Cloudera's public package and parcel repository.
Service Delivery S3 Cache	Confirms access to the Cloudera-managed S3 bucket used to store artefacts.
DataBus API and S3 endpoint	Validates connectivity to Cloudera's DataBus service for telemetry and control plane communication.
CCM (Cluster Connectivity Manager)	Shows if CCM is enabled or disabled for this environment — relevant for private cloud or restricted networks.

All True values indicate full network connectivity and endpoint reachability node is healthy.
Any False or timeout entries suggest potential network issues, blocked ports, or DNS problems. If any endpoint is inaccessible, administrators should verify:
- Security groups or firewall rules
- Outbound proxy settings
- DNS resolution
- Internet or S3 endpoint reachability
A disabled CCM is normal in environments directly connected to the internet. CCM may be enabled for outbound communication via proxy for private or secure environments.