Hey there, i want to setup a site-to-site connection via netbird, between an edge gateway and ignition gateway. While testing this setup I realised that the connection had some difficulties when adding some network policies. Especially regarding the connection to the ignition gateway edge historian sink.
What ports would this edge to ignition gateway connection need to access?
Do both gateways need access to each other or is a one directional connection enough?
The recommended ports that edge to ignition need to access are 8060 for SSL connections and 8088 for non-SSL connections. As for the directional connection from one gateway to another, it can be one-direction where the outgoing direction is from Edge to the main gateway listening and approving the incoming connection. This will mean that firewall from your main gateway will only allow incoming traffic from specified Netbird address of you Edge gateway.
@anjoroge thank you for your answer.
When choosing the SSL connection via the port 8060, the edge gateway will use the SSL certificate created under Network > Network Settings > Web Server > SSL/TLS ? Or does it use a different internal certificate?
By default, the gateway uses a self-signed certificate for internal connections.