DevOps & Containers

Port 2379

etcd

etcd distributed key-value store — Kubernetes cluster state

Port
2379
Protocol
TCP
Service
etcd
Security
Dangerous
Full name: etcd Client API (Kubernetes)

What is port 2379?

Port 2379 is the client API port for etcd, the distributed key-value store that Kubernetes uses to persist all cluster state including deployments, secrets, and configuration. An exposed etcd instance without authentication allows an attacker to read all Kubernetes secrets and write arbitrary cluster state, effectively giving full control of the cluster. etcd must be completely isolated from all untrusted networks.

Related ports

Port 6443 Kubernetes Kubernetes API server — central cluster control plane
← All ports