Why is the DC listening on HTTP and accepting logins for port 8681?

How to disable port 8681 from listening for connections from any IP address?

We see this on the DC at the CLI.

[root@DC_HOST ~]# ss -an | grep 8681
tcp    LISTEN     0      50     [::]:8681               [::]:*
[root@DC_HOST~]#

How to limit access to port 8681 on a DX NetOps Performance Management Data Collector server?

All supported DX NetOps Performance Management releases

Environment requirements

The port only requires local access. It doesn't need to be opened to communication requests from other systems.

There are two ways to limit access to this port.

1. Environmental firewall restrictions.
2. Configuring the DC as follows. Default install paths shown, change as needed.
   
   1. Open the /opt/IMDataCollector/apache-karaf/etc/jetty.xml file for editing.
      1. Set the <name="name entry to use the loopback.
         • Default entry: <Set name="name">0.0.0.0:<Property name="http.port" default="8681" /></Set> 
         • Edited entry: <Set name="name">127.0.0.1:<Property name="http.port" default="8681" /></Set>
      2. Set the <name="host entry to use the loopback.
         
         • Default entry: <Set name="host"><Property name="jetty.host" /></Set>
         • Edited entry: <Set name="host"><Property name="jetty.host" default="127.0.0.1" /></Set>
      3. Save the changes.
   2. Open the /opt/IMDataCollector/apache-karaf/etc/org.ops4j.pax.web.cfg file for editing.
      
      1. Add this line to the end of the file.
         • org.ops4j.pax.web.listening.addresses=127.0.0.1
      2. Save the changes.
   3. Restart the DC after the changes.
      1. Stop the dcmd service.
         • systemctl stop dcmd
      2. Start the dcmd service.
         • systemctl start dcmd

When done properly output from the "ss -an | grep 8681" command will show port 8681 listening for requests from the loopback address only.