Firewall 
To optimally protect SAP NetWeaver Enterprise Search and be able to use required network services, the Novell SLES firewall is activated by default on the master blade.
The default settings of the operating system firewall are not automatically enhanced during the installation of SAP NetWeaver Enterprise Search but must be configured manually, unless you used the default SAP NetWeaver Enterprise Search installation routine.
The following section lists the firewall settings that are changed during the installation on the master blade.
Firewall Settings
The firewall settings are located in the /etc/sysconfig/scripts/SuSEfirewall2–custom file.
The following settings are made automatically during the installation:
Enable IP masquerading for private network (NAT)
By default, the following ports are permitted for inbound connections:
50100 (SAP Web Dispatcher HTTP/HTTPS)
50113 (SAP MC)
30203
30209
3299 (3299)
22 (ssh)
The firewall is set to "start when booting."
Note
All computers in the private network are authorized to access the external customer network. In particular, this is necessary if LDAP synchronization is required. Otherwise, outbound data traffic can also be mapped through the SAProuter if necessary and the NAT deactivated.
The following configurations are essential prerequisites for SAP NetWeaver Enterprise Search:
Multiple-blade landscape
The Ethernet adapter for communication with the customer network must be configured as bond1 on the master blade.
The Ethernet adapter for the internal (private) network must be configured as bond0 on the master blade.