Professional Documents
Culture Documents
Port
Protocol
Source
Target
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
22
53
68
80
88
111
111
123
161
162
389
427
443
443
445
445
445
464
514
902
902
902
TCP
UDP
UDP
TCP
TCP
TCP
UDP
UDP
UDP
UDP
TCP/UDP
UDP
TCP
TCP
UDP
TCP
TCP
TCP
UDP/TCP
TCP/UDP
TCP
TCP/UDP
Client PC
ESXi 5.x
ESXi 5.x
Client PC
ESXi host
ESXi/ESX Host
ESXi/ESX Host
ESXi/ESX Host
SNMP Server
ESXi Host
ESXi host
VI / vSphere Client
VI / vSphere Client
ESXi/ESX Host
ESXi host
ESXi host
ESXi host
ESXi host
ESXi 5.x
ESXi 5.x
vSphere Client
ESXi 5.x
ESXi 5.x
DNS Server
DHCP Server
ESXi 5.x
Active Directory Server
NFS Server
NFS Server
NTP Time Server
ESXi 4.x Host
SNMP Collector
LDAP Server
ESXi/ESX Host
ESXi/ESX Host
ESXi/ESX Host
MS Directory Services Server
MS Directory Services Server
SMB Server
Active Directory Server
Syslog Server
ESXi 5.x
ESXi 5.x
vCenter Server
23
23
1024 (dynamic)
TCP/UDP
ESXi Host
24
25
26
27
28
29
30
31
24
25
26
27
28
29
30
31
2049
2049
3260
5900 to 5964
5989
5989
5989
8000
TCP
UDP
TCP
TCP
TCP
TCP
TCP
TCP
ESXi 5.x
ESXi 5.x
ESXi 5.x
ESXi 5.x
CIM Server
vCenter Server
ESXi 5.x
ESXi 5.x (VM Target)
NFS Server
NFS Server
iSCSI storage server
ESXi 5.x
ESXi 5.x
ESXi 5.x
vCenter Server
ESXi 5.x (VM Source)
32
33
34
35
36
37
38
39
40
41
42
43
44
45
32
33
34
35
36
37
38
39
40
41
42
43
44
45
8000
8100
8182
8200
8301
8302
31100
31000
6500
8000
8001
25
53
80
TCP
TCP/UDP
TCP/UDP
TCP/UDP
UDP
UDP
TCP
TCP
UDP
TCP
TCP
TCP
UDP
TCP
46
46
80
TCP
vCenter Server
ESXi 5.x
47
48
49
47
48
49
88
88
135
UDP
TCP
TCP
vCenter Server
vCenter Server
vCenter Server
50
50
9084
TCP
vSphere Client
Update Manager
51
51
162
UDP
vCenter Server
SNMP Server
52
52
389
TCP/UDP
vCenter Server
53
53
443
TCP
vSphere Client
vCenter Server
54
54
443
TCP
vCenter Server
ESXi 5.x
55
55
623
UDP
vCenter Server
ESXi 5.x
56
56
636
TCP
vCenter Servers
Servers
57
57
902
TCP
vCenter Server
ESXi 5.x
58
58
902
UDP
vCenter Server
ESXi 5.x
59
59
902
TCP/UDP
vSphere Client
ESXi 5.x
60
60
902
TCP/UDP
ESXi 5.x
ESXi 5.x
61
61
5480
TCP
Client PC
vCenter Server
62
62
1024 (dynamic)
RPC
63
64
65
66
67
68
69
70
63
64
65
68
69
70
71
72
1433
1521
5988
7500
8000
8005
8006
8009
TCP
TCP
TCP
UDP
TCP
TCP
TCP
TCP
71
73
8080
TCP
72
73
74
75
74
75
76
77
8083
8085
8086
8087
TCP
TCP
TCP
TCP
76
78
8443
TCP
Client PC
77
78
79
80
81
79
80
81
82
83
8443
9443
10109
10111
10443
TCP
TCP
TCP
TCP
TCP
vCenter Server
Client PC
vCenter Server
vCenter Server
Client PC
82
84
51915
TCP
ESXi
83
85
60099
TCP
vCenter Server
vCenter Server
84
86
7005
TCP
85
87
7080
TCP
86
88
7444
TCP
87
89
7009
TCP
88
89
90
91
10111
25
TCP
TCP
vCenter Server
SMTP Server
vCenter
vCenter
ESXi
vCenter
vCenter
vCenter
vCenter
vCenter
Server
Server
5.x
Server
Server
Server
Server
Server
Client PC
vCenter
vCenter
vCenter
vCenter
Server
Server
Server
Server
Server
Server
Server
Server
vCenter Server
vCenter
vCenter
vCenter
vCenter
vCenter
Server
Server
Server
Server
Server
90
92
389
TCP/UDP
VCO Server
LDAP Server
91
93
443
TCP
VCO Server
vCenter Server
92
94
636
TCP
VCO Server
LDAP Server
93
94
95
96
95
96
97
98
1433
1521
3306
5432
TCP
TCP
TCP
TCP
VCO
VCO
VCO
VCO
97
99
8230
TCP
VCO Client
VCO Server
98
100
8240
TCP
VCO Client
VCO Server
99
101
8244
TCP
VCO Client
VCO Server
100
102
8250
TCP
VCO Client
VCO Server
101
102
103
104
8280
8281
TCP
TCP
VCO Server
VCO Server
VCO Server
VCO Server
103
105
8281
TCP
vCenter Server
VCO Server
104
106
8282
TCP
VCO Client PC
VCO Server
105
107
8283
TCP
VCO Client PC
VCO Server
106
108
80
TCP
107
109
80
TCP
ESXi/ESX Host
108
110
80
TCP
vCenter Server
109
111
443
TCP
110
112
443
TCP
ESXi/ESX Host
111
113
443
TCP
vCenter Server
Server
Server
Server
Server
112
114
735
TCP
Virtual Machines
113
115
902
TCP
ESXi/ESX Host
114
115
116
117
1433
1521
TCP
TCP
116
118
8084
TCP
vCenter Server
117
119
9084
TCP
ESXi/ESX host
118
120
9087
TCP
vCenter Server
119
121
9000 to 9100
TCP
ESXi/ESX Host
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
111
920
61611
61616
25
53
123
389
443
514
902
903
1433
1521
5672
10109
10111
10111
10080
10443
9443
9090
443
7444
TCP, UDP
TCP, UDP
TCP
TCP
TCP, UDP
TCP, UDP
TCP, UDP
TCP, UDP
TCP
UDP
TCP
TCP
TCP
TCP
TCP, UDP
TCP
TCP
TCP
TCP
TCP
TCP
TCP
TCP
TCP
NFS Server
NFS Server
vCloud Director Cell
vCloud Director Cell
SMTP Server
DNS Server
NTP Time Server
LDAP Server
ESXi / vCenter
Syslog Server
ESXi / vCenter
ESXi / vCenter
SQL Server Database
Oracle Database Server
AMQP RabbitMQ
vCenter Server
vCenter Server
vCenter Server
vCenter Server
vCenter Server
Web Client Server
Web Client Server
vCenter Server
vCenter SSO
144
146
5988
TCP
CIM Server
ESXi 5.x
145
147
12443
TCP
146
148
12221
TCP
Purpose
SSH Server
DNS Client
DHCP Client
Redirect Web Browser to HTTPS Service (443)
PAM Active Directory Authentication - Kerberos
NFS Client RPC Portmapper
NFS Client RPC Portmapper
NTP Client
SNMP Polling. Not used in ESXi 3.x
SNMP Trap Send
PAM Active Directory Authentication - Kerberos
CIM Service Location Protocol (SLP)
VI / vSphere Client to ESXi/ESX Host management connection
Host to host VM migration and provisioning
PAM Active Directory Authentication
PAM Active Directory Authentication
SMB Server
PAM Active Directory Authentication - Kerberos
Remote syslog logging
Host access to other hosts for migration and provisioning
vSphere Client access to virtual machine consoles (MKS)
(UDP) Status update (heartbeat) connection from ESXi to vCenter Server
Bi-directional communication on TCP/UDP ports is required between the ESXi host
and the Active Directory Domain Controller (via the netlogond process on the ESXi
host). See Active Directory and Active Directory Domain Services Port
Requirements and MS article 179442.
Transactions from NFS storage devices
Transactions from NFS storage devices
Transactions to iSCSI storage devices
RFB protocol, which is used by management tools such as VNC
CIM transactions over HTTP
CIM XML transactions over HTTPS
CIM XML transactions over HTTPS
Requests from vMotion
LDAP Authentication
Used to obtain virtual infrastructure and virtual machine information from
orchestrat- ed vCenter Server(s) through the vCenter API
VCO uses LDAP authentication and group membership to determine role
authorization in LCM and access to VMs/requests. This is the SSL secured LDAP
protocol LDAPS (the SSL pendent of 389). This is used for secured LDAP
authentication
vCenter Orchestrator Server to Microsoft SQL Server for VCO Database
vCenter Orchestrator Server to Oracle for VCO Database
vCenter Orchestrator Server to MySQL Server for VCO Database
vCenter Orchestrator Server to PostgresSQL Server for VCO Database
Lookup port The main port to communicate with Orchestrator Configurator server
(JNDI port). All other ports communicate with the Orchestrator Configurator smart
client through this one. It is part of the JBoss Application server infrastructure
Command port The application communication port (RMI container port), it is
used for remote invocations. It is part of the JBoss Application server infrastructure.
Data port used to access all Orchestrator data models, such as workflows and
policies. It is part of the JBoss application server infrastructure.
Messaging port The Java messaging port used to dispatch events. It is part of the
JBoss Application server infrastructure
Port used by VCO Server to connect to the Web front-end via HTTP
Port used by VCO Server to connect to the Web front-end via HTTPS
Port used by VCO Server to connect to vCenter Server to communicate with the
vCenter API
HTTP server port Port used by the HTTP connector to connect to the Web
frontend.
HTTPS server port Port used by HTTP connector to connect to the Web frontend.
Requires Jetty to be configured for SSL.
To obtain metadata for the updates, Update Manager must be able to connect to
http://www.vmware.com and http://xml.shavlik.com
ESXi/ESX Host to Update Manager Server. The reverse proxy forwards the request
to port 9084
Update Manager to vCenter Server communication
To obtain metadata for the updates, Update Manager must be able to connect to
http://www.vmware.com and http://xml.shavlik.com
ESXi/ESX Host to Update Manager Server . The reverse proxy forwards the request
to port 9084
vCenter Server to Update Manager Server. The reverse proxy forwards the request
to port 8084
Internal port for Log Browser adminitstration page. It opens a socket (only bound
tolocalhost) to accept admin commands.