Bi-directional RPC communications on dynamic TCP ports required between all vCenters in Linked Mode (via ADAM)
Connections & Ports in ESX & ESXi
RPC
Including vCenter Server, Site Recovery Manager, VMware Consolidated Backup, VMware Data Recovery, VMware Update Manager, VMware Orchestrator and VMware Converter
VCO Client
VCO DB REMOTE VMware vCenter Server (SRM)
RPC
80
ad lo wn do
VMware vCenter Server
8
8& 13 7& 13 5&
3/TCP /M
eta da
s
tion a c ni mu proxy 84 m co rse rt 80 C o e V M- e rev t to p U /V Th es CP CP/ requ T / 80 443/T the s ard w r fo
s
1521/TC
Update Manager ta for u
pdate
te for upda a t a d a t CP/Me 0+443/T
Co
vCenter Converter Client (ionly required if Converter Client and Converter Server were installed on different systems
nv
ers
ion
Guided Consolidation Targets Converter 4 Only
Internal
Patch DB
P
SMTP Server
44
8005&8006&8086/TCP/ Internal Communications Port 8083 & 8085 & 8087/TCP/ Internal Service Diagnostics 443/TCP/vCenter API (Orch.) 8281/TCP/vCenter AP (Orch.)
21
/TC P 33 -OR /Ora /TC cle P/MSS QL
3/ TC P is /R th eq e ui co re nv d er if v sio C n ent ta er rg S et e
SNMP Server
rv
er
VC DB
Physical Machine
9089/TCP/Required. Remote Agent Deployment 443/TCP/Required if Converter Client & Converter Server were installed on different systems
VM
137+138(UDP)+139(TCP)/For hot migration. Not required if the source does not use NetBIOS 445/TCP/Required for conversion. Not required if the source uses NetBIOS 22/TCP/Only for Linux-based Source Computer
443/TCP
P/Oracle -OR1433/TC P/MS S QL
8084/TCP/SOAP 9084/TCP/VUM Web Server. Accessed through Reverse Proxy from port 80 and/or 443
3/T CP /Sy ste m
s
443
Data Recovery Appliance
902/TCP/Pushes updates to the host (both ESX & ESXi)
44 5/ /TC TC P/R P& e q is t he uired UD co n if v P/ C ve r sio enter n ta rge Serve t r
v co e R ta ent a D P/ gem C a T 4/ an 2 M 20
DNS Server
44
80+44
14
al
DP/ DNS
2
80+443/TCP/Host to Update Server. forwards to 9084 9000-9100/TCP/Use if 80+443 are not available. Automatically opened for host scanning and remediation
www.vmware.com
P /UD
ery
ons
ation notific l i a m /E
15
9&
53/U
53
notificati
161/UD 162/UD P/SNMP Pollin P/SNM P Trap g Se n d
S /DN
13
r
in
rt o
se ro w
l na
ug Pl & n tio ica
tv en em ag
tb
/R e
dir
ec
/H o
80
/T CP
5+
44
13
7-
3/ TC P
13
st
9/T CP
VI M
/S M
an
B
P/SSH
443/TCP/vCenter Agent 902/TCP/Heartbeat 903/TCP/VI-vSphere Client to VM Console 5989/TCP/CIM transaction communication
427/TCP&UDP/CIM Service Location Protocol (SLP) 443/TCP/Server-to-server migration & provisioning traffic 902/TCP&UDP/Authentication, Provisioning, VM Migration 5988/TCP/CIM Client to CIM Secure Server 5989/TCP/CIM Client to CIM Secure Server 8000/TCP/VCOtion Communication of VMkernel Interface 8100+8200/TCP&UDP/VMware FT. ESX/ESXi 4 Hosts only 2050-2250/UDP/VMware HA 8042-8045/TCP/VMware HA
Source: VMware Network Ports Compendium -v5
m un
Orchestrator
n Inter
e Int
Dudley Smith Fri Jan 15 2010 v5.0
25/TC
902/UDP/Heartbeat
123/UDP/NTP client
xml.shavlik.com
/T CP
/Email 25/TCP
LDAP Server
13
NTP Server
ESX & ESXi
/S R
l rna r
389/TCP/LDAP
ESX & ESXi
M
s vCenter 4 Only
389/TCP/LDAP (Option al) 636/TCP/LDAPS (Option al)
AP
1521/TCP/Oracle -OR1433/TCP/MS SQL -OR5000/TCP/IBM DB2
SRM DB
Co
es
VCB Proxy
m
cc
389/TCP/LD
gging
ta
log lo
3.x Only
n
emot e Sys
ESXi 4 Only
en
DP/R
cl i
514/U
e
Syslog Server
ESX only
io at
llin g1 111 1 62 /TC 61 /UD /UD 204 P&UD P/S P 9/T /SN CP P/NFS NM MP &U PT DP Clien Po rap /NF t-R llin SS P Se g C erv nd er/N Portm app FS Clie er nt
er
Po
ic nt
MP
ph
/SN
27 27 000 01 /T 0/T CP CP /fo /fo r V r V I3. I3 xh 443 .x os ho ts /TC sts P/R equ Co i mm red fo u n i r VC cat ion B an & B d vc ack bM oun up te e th
DP
BA
8280/TCP/HTTP
Au
NFS Server
1/U
AD P/
16
IH
D
CS
FlexLM License Server
U
iS
&
re
Site Recovery Manager
9007/TCP/SOAP
S I/v /V
wa
External API Client
P TC 3/
rd
P C /T 45
Ha
s er ro S e b er tion ord K - ica ssw n t tio hen s Pa a ic t o nt Au ber e th AD er Au M - K P AD P/ tion D M ca PA P&U nti / e CP /TC uth sts s o T / h t 5 A .x hos 88 44 D 3 I A V .x M for VI 3 A / /P CP /for P T / C 00 /TCP /T 0 4 27 010 46 27 ter un o M cb v d an kup B c VC & Ba r o d f on ire icati u eq mun R / CP Com 3/T 4 4
Active Directory Server
8230/TCP/Lookup 8240/TCP/Command 8250/TCP/Messaging 8282/TCP/HTTP 8283/TCP/HTTPS
80/TCP/SRM communication with remote vCenter Server(Port 80 is used for the initial connection to the remote site. After the initial HTTP connection is made, the two sites establish an SSL connection over port 80 for subsequent connections.)
44
&
es c i v
+4
nt
/F TP
1521/TCP/Oracle 1433/TCP/MS SQL 3306/TCP/MySQL 5432/TCP/PostgresSQL
389/TCP/Bi-direction LDAP authentication with Kerberos encryption between vCenter Servers
88
lie
44
IC
/T CP
P/FTP
CS
21/TC
21
iS
H
re
S /S
ftw a
P /TC
/T CP /S o
22/TC
60
22
SNMP Server
ia br HT ow TP se S 90 44 r ( 90 2 3 44 / / 3/ TC TC 3) TC P P P/ /H /H VM o s o s t t R ed Ma em V n ot M c age e on m VM n e e n C cti t on vi so ty le
iSCSI SAN
32
Linked Linked Linked vCenter vCenter vCenter Server Server Server
80
SMB Server
Int e
SSH Server
ole P ) ns TT 43 Co s H TPS (4 VM vice HT ce o rvi er ices tt S se ien eb erv PS Cl S TT re t W b he en We oH rt Sp gem ent se -v VI aa m ow br P/ an age ct TC P/M an ire 3/ M ed 90 0/TC CP/ /R 8 T 8 0 4 3/ 84
FTP Server
CP 3/T
SSH Client
4 +4
FTP Client
vCenter Converter
443/TCP/Required for Linux sources
22/TCP
Helper 902/TCP/Required for data transport during cloning of system to be converted to target ESX/ESXi Host 443/TCP/Required for destination VM access when target is ESX/ESXi/vCenter
VMware Virtual Machines
VM Third-party Virtual Machines
.sv2i
Third-party System Images
Source