Restrictions in BareMetal networks
There is a number of restrictions in BareMetal networks.
MAC addresses
If you need more MAC addresses per port, contact support and describe the tasks that require the change.
| Limit type | Amount |
|---|---|
| MAC addresses per port | 5 |
MTU and MSS
The following MTU and MSS limits apply to the service:
| Limit type | Value, bytes |
|---|---|
| MTU in public network | 1500 |
| MSS in public network | 1460 |
| MTU in private network | 8910 |
| MSS in private network | 8870 |
Bandwidth
Public networks have a 1 Gbps bandwidth limit for all servers, including those with 10 Gbps NICs.
| Limit type | Value, Gbps |
|---|---|
| Bandwidth in public network | 1 |
Storm Control
The service is subject to the following broadcast traffic limits:
| Limit type | Value,packets per second (pps) |
|---|---|
| Broadcast | 100 |
| UnknownUnicast | 100 |
| Multicast | 100 |
Blocked network ports
The routers connecting BareMetal servers to the internet limit the incoming internet traffic to public server addresses on some TCP and UDP ports as well as the outgoing SMTP traffic. By blocking these ports you can protect the Yandex BareMetal infrastructure against malicious networking traffic.
| Port | Application layer protocol | Transport protocol |
|---|---|---|
17 |
QOTD | TCP, UDP |
23 |
Telnet | TCP |
67–68 |
DHCP | UDP |
111 |
SUNRPC | UDP |
135–139 |
NetBIOS | TCP, UDP |
389 |
LDAP | TCP, UDP |
427 |
SLP | TCP, UDP |
445 |
SMB | TCP, UDP |
513 |
rlogin | TCP |
520 |
RIP | UDP |
631 |
IPP | TCP, UDP |
646 |
LDP | TCP, UDP |
750 |
Kerberos-IV | UDP |
1900 |
SSDP | UDP |
3702 |
WSD | UDP |
11211 |
memcached | UDP |
If the port you need is not in the table, use the Nmap utility to check if it is available on the BareMetal server OS side.
| Port | Application layer protocol | Transport protocol |
|---|---|---|
25 |
SMTP1 | TCP |
1 SMTP traffic is blocked to avoid unauthorized newsletters. We recommend using Yandex Cloud Postbox as an alternative for newsletters.