Configuring Metastore cluster security groups

If the cloud network uses security groups, they can hinder the Metastore cluster performance. Set up the default security group to work with Metastore. To do this, add the following rules to it:

• For incoming client traffic:

  • Port range: 30000-32767
  • Protocol: Any (Any)
  • Source: CIDR
  • CIDR blocks: 0.0.0.0/0

• For incoming load balancer traffic:

  • Port range: 10256
  • Protocol: Any (Any)
  • Source: Load balancer healthchecks

If you plan to use multiple security groups for a cluster, enable all traffic between these groups.