2.3. Capsule Networking
The goal of Capsule isolation is to provide a single endpoint for all of the host’s network communications, so that in remote network segments, you need only open firewall ports to the Capsule itself. The following diagram shows how the Satellite components interact in the scenario with hosts connecting to an isolated Capsule.
図2.1 Satellite Topology with Isolated Capsule
The following diagram shows how the Satellite components interact when hosts connect directly to the Satellite Server. Note that as the base system of an external Capsule is a Client of the Satellite, this diagram is relevant even if you do not intend to have directly connected hosts.
図2.2 Satellite Topology with Internal Capsule
The Ports and Firewalls Requirements in Installing Satellite Server from a Connected Network, Ports and Firewalls Requirements in Installing Satellite Server from a Disconnected Network and Ports and Firewalls Requirements in Installing Capsule Server contain complete instructions for configuring the host-based firewall to open the ports required.
A matrix table of ports is available in the Red Hat Knowledgebase solution Red Hat Satellite List of Network Ports.
