Rules for firewall between brokers

  • When configuring a firewall that sits between two brokers, does the broker port (port 8883) have to be opened for both directions or only to allow the child broker to be able to connect to the parent broker?

  • The broker port 8883 does not need to be opened in both directions - the port only needs to be opened to allow the child broker to reach out to the parent broker.

    The child broker will always be initiating the connection to the parent broker.