Architectural Overview
# netstat -tulpn
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 3577/rpcbind
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 5539/nginx: master
tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 5338/docker-proxy
tcp 0 0 0.0.0.0:4433 0.0.0.0:* LISTEN 8355/docker-proxy
tcp 0 0 0.0.0.0:4434 0.0.0.0:* LISTEN 8335/docker-proxy
tcp 0 0 0.0.0.0:4436 0.0.0.0:* LISTEN 8055/docker-proxy
tcp 0 0 0.0.0.0:4437 0.0.0.0:* LISTEN 7973/docker-proxy
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 4538/sshd
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 4361/master
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 5539/nginx: master
tcp 0 0 0.0.0.0:4455 0.0.0.0:* LISTEN 7931/docker-proxy
tcp 0 0 127.0.0.1:37547 0.0.0.0:* LISTEN 4179/containerd
tcp6 0 0 :::111 :::* LISTEN 3577/rpcbind
tcp6 0 0 :::8080 :::* LISTEN 5356/docker-proxy
tcp6 0 0 :::4433 :::* LISTEN 8362/docker-proxy
tcp6 0 0 :::82 :::* LISTEN 8574/httpd
tcp6 0 0 :::4434 :::* LISTEN 8341/docker-proxy
tcp6 0 0 :::4436 :::* LISTEN 8064/docker-proxy
tcp6 0 0 :::4437 :::* LISTEN 7982/docker-proxy
tcp6 0 0 :::22 :::* LISTEN 4538/sshd
tcp6 0 0 :::4455 :::* LISTEN 7943/docker-proxy
tcp6 0 0 :::9000 :::* LISTEN 27692/./main
udp 0 0 0.0.0.0:68 0.0.0.0:* 4024/dhclient
udp 0 0 0.0.0.0:111 0.0.0.0:* 3577/rpcbind
udp 0 0 127.0.0.1:323 0.0.0.0:* 3644/chronyd
udp 0 0 0.0.0.0:672 0.0.0.0:* 3577/rpcbind
udp6 0 0 :::111 :::* 3577/rpcbind
udp6 0 0 ::1:323 :::* 3644/chronyd
udp6 0 0 fe80::8bb:37ff:fe2e:546 :::* 4069/dhclient
udp6 0 0 :::672 :::* 3577/rpcbind
Our main open ports are:
8080 for the hasura graphql server.
4433,4434,4436,4437,4455 for the ory kratos instance.
4455 is the self-service portal which might not be up forever.
9000, for our API, AKA the dispatcher, identity service provider, and other API things.
80 is the main port for the app, and 443 is the main secured port.
if you're wondering where discourse is served from, it's served through a socket through nginx.
$ ls -la
total 0
drwxr-xr-x 10 root root 114 Jan 26 08:12 .
dr-xr-xr-x 18 root root 257 Feb 4 01:03 ..
drwx------ 9 admin admin 240 Feb 17 07:32 admin
drwx------ 6 api api 178 Jan 7 06:26 api
drwx------ 5 apollo apollo 137 Mar 2 00:38 apollo
drwx------ 3 discourse discourse 123 Feb 15 08:30 discourse
drwx------ 4 ec2-user ec2-user 147 Feb 25 01:47 ec2-user
drwx------ 2 grpc grpc 62 Jan 26 08:12 grpc
drwx------ 2 hasura hasura 222 Nov 11 03:57 hasura
drwx------ 12 ory ory 257 Mar 3 08:41 ory
Our current list of users. Each user has a responsibility.