Ports must be exposed appropriately to enable communication. An example port configuration for a Hyperledger Besu node on AWS is:
Besu supports UPnP for home or small office environments where a wireless router or modem provides NAT isolation.
To enable peer discovery, the P2P UDP port must be open for inbound connections. The P2P port
is specified by the
--p2p-port option. The default is
We also recommended opening the P2P TCP port for inbound connections. This is not strictly required because Besu attempts to initiate outbound TCP connections. However, if no nodes on the network are accepting inbound TCP connections, nodes cannot communicate.
By default, peer discovery listens on
0.0.0.0:30303 (all interfaces). If the device that Besu runs on must bind to a specific interface, use the
--p2p-interface option to specify the network interface to use.
To enable access to the JSON-RPC API, open the HTTP JSON-RPC and WebSockets JSON-RPC ports to the intended users of the JSON-RPC API on TCP.
To enable Prometheus to access Besu, open the metrics port or metrics push port to Prometheus or the Prometheus push gateway on TCP.