With MultiCluster, LSF daemons can be configured to communicate over non-privileged ports (by default, LSF daemons in a MultiCluster environment use privileged port authentication).
If disabling the privileged port authentication makes you concerned about the security of daemon authentication, you can use an eauth program to enable any method of authentication for secure communication between clusters.
All clusters must be configured to use non-privileged ports for LSF daemon communication.
If you use a firewall, it must accept incoming communication from non-privileged source ports if the destination ports are the LIM port configured LSF_LIM_PORT in lsf.conf and mbatchd port configured in LSB_MBD_PORT in lsf.conf.
If you use a firewall, it must allow outgoing communication from non-privileged source ports to non-privileged destination ports.