etcd Peer
What is Port 2380?
Port 2380 is the default peer communication port for etcd clusters. While port 2379 handles client API requests, port 2380 is used for inter-node communication within the etcd cluster — leader election, log replication, and cluster membership changes. The Raft consensus protocol operates over this port, ensuring that all etcd nodes maintain a consistent view of the data. In a Kubernetes deployment, the etcd cluster typically runs 3 or 5 nodes (odd number for quorum), and all peer communication flows through port 2380. Proper connectivity between etcd peers on this port is essential for cluster health and availability.
Common Uses
- etcd cluster node-to-node communication
- Raft consensus protocol messages
- Cluster membership and leader election
- Log replication between etcd nodes
Technical Details
Copy-paste commands to check port 2380 (etcd Peer) from your terminal
Test connectivity
nc -zv example.com 2380
curl -v --max-time 5 http://example.com:2380/
telnet example.com 2380
nmap -p 2380 -sV example.com
(echo > /dev/tcp/example.com/2380) 2>/dev/null && echo "open" || echo "closed"
Open port in firewall
sudo ufw allow 2380/tcp
sudo iptables -A INPUT -p tcp --dport 2380 -j ACCEPT
sudo firewall-cmd --permanent --add-port=2380/tcp && sudo firewall-cmd --reload
Security Considerations
Peer communication must be encrypted with mutual TLS to prevent unauthorized nodes from joining the cluster or intercepting data. Restrict port 2380 access to only the IP addresses of etcd cluster members. Monitor cluster health metrics and watch for unexpected peer connection attempts. Ensure consistent TLS certificate rotation across all cluster members.
Popular Ports Reference
The most commonly used and referenced network ports