You are on page 1of 1

Bi-directional RPC communications on

dynamic TCP ports required between


all vCenters in Linked Mode (via ADAM)

Connections & Ports in ESX & ESXi

RPC

Including vCenter Server, Site Recovery Manager, VMware Consolidated Backup, VMware Data Recovery, VMware Update Manager, VMware Orchestrator and VMware Converter

VCO
Client

VCO DB
REMOTE
VMware vCenter
Server
(SRM)

RPC

80
+4

ad
lo
wn
do

rt
o

se

ro
w

VMware vCenter
Server

80+44

3/TCP
/M

Update Manager
ta for
u

pdate

for upda
a
t
a
d
a
t
CP/Me
0+443/T

44

80/TCP/VUM-VC communication
443/TCP/The reverse proxy forwards the
request to port 8084
8084/TCP/SOAP communication between
VUM and vCenter Update Manager plug-in.
Configurable at install.
9087/TCP/Port used for upload host
update files. Configurable at install.

3/T
CP
/Sy
ste
m

Co

vCenter Converter Client


(ionly required if Converter
Client and Converter Server
were installed on different
systems

nv

ers

ion

Guided
Consolidation
Targets
Converter 4
Only

tes

8005&8006&8086/TCP/
Internal Communications Port
8083 & 8085 & 8087/TCP/
Internal Service Diagnostics
443/TCP/vCenter API (Orch.)
8281/TCP/vCenter AP (Orch.)

/TC
P
33 -OR /Ora
/TC
cle
P/MSS
QL

3/
TC
P
is /R
th eq
e ui
co re
nv d
er if v
sio C
n ent
ta er
rg S
et e

SNMP Server

rv

er

VC DB

Physical
Machine

9089/TCP/Required.
Remote Agent Deployment
443/TCP/Required if Converter
Client & Converter Server were
installed on different systems

vCenter
Converter

443/TCP/Required for
Linux sources

VM

22/TCP

Helper
Dudley Smith
Mon Sep 27 2010
v10Q3
Subscribe: http://communities.vmware.com/blogs/dudleysmith

SMTP Server

21

137+138(UDP)+139(TCP)/For hot migration.


Not required if the source does not use NetBIOS
445/TCP/Required for conversion.
Not required if the source uses NetBIOS
22/TCP/Only for Linux-based Source Computer

443/TCP

1521/TCP/Oracle
-OR1433/TCP/MS SQL

443

Data
Recovery
Appliance

902/TCP/Pushes
updates to the host
(both ESX & ESXi)

44
5/
/TC
TC
P/R
P&
e
q
is t
he uired
UD
co n
if v
P/
C
ve r
sio enter
n ta
rge Serve
t
r

13
7&
13
5&

eta da

DNS Server

44

9&

NS

13

P/D

ic
un
m
ry
m
co ove
r
c
nte Re
e
a
nt
vC t
& P/Da eme
R C
g
/vD 4/T ana
P
2
M
/TC 220
43
53

80+443/TCP/Host to Update Server. forwards


to 9084
9084/TCP/ESX&ESXi hosts listen for updates.
Configurable at install.
9000-9100/TCP/Use if 80+443 are not
available. Automatically opened for host
scanning and remediation

www.vmware.com

/UD

14

al

53

427/TCP&UDP/CIM Service Location Protocol (SLP)


443/TCP/Server-to-server migration & provisioning traffic
902/TCP&UDP/Authentication, Provisioning, VM Migration
5988/TCP/CIM Client to CIM Secure Server
5989/TCP/CIM Client to CIM Secure Server
8000/TCP/vMotion Communication of VMkernel Interface
8100+8200/TCP&UDP/VMware FT. ESX/ESXi 4 Hosts only
2050-2250/UDP/VMware HA
8042-8045/TCP/VMware HA

N
P/D
D
U
/

on
ati

ons

161/UD
162/UD P/SNMP Pollin
P/SNM
P Trap g
Send
15

8&

in

en
em
ag

ec

dir
/R
e
/T
CP

80

44

44

5+
13

3/
TC
P

713

/H
o

tb

st

9/T
CP

VI
M

/S
M

an

P/SSH
22/TC

l
na

ug
Pl
&
n
tio
ica
m
un

Orchestrator

n
Inter

e
Int

443/TCP/vCenter Agent
902/TCP/Heartbeat
903/TCP/VI-vSphere Client to VM Console
5989/TCP/CIM transaction communication
623/UDP/DPM with IPMI (iLO/BMC)

notificati

ation
notific
l
i
a
m
P/E
25/TC

902/UDP/Heartbeat

123/UDP/NTP client

xml.shavlik.com

Co

/Email
25/TCP

LDAP Server

13

NTP
Server

ESX & ESXi

/T
CP

389/TCP/LDAP

ESX & ESXi

/S
R

l
vCenter 4
Only

389/TCP/LDAP (Option
al)
636/TCP/LDAPS (Option
al)

AP

1521/TCP/Oracle
-OR1433/TCP/MS SQL
-OR5000/TCP/IBM DB2

SRM DB

ss

VCB Proxy

e
cc

389/TCP/LD

gging

ta

log lo

3.x
Only

emot
e Sys

ESXi 4
Only

en

DP/R

cli

514/U

ESX only

io
at

llin
g1
111
1
62
/TC
61
/UD
/UD
204 P&UD
P/S
P
9/T
/SN
CP P/NFS
NM
MP
&U
PT
DP Clien
Po
rap
/NF
t-R
llin
SS
P
Se
g
C
erv
nd
er/N Portm
app
FS
Clie er
nt

re

Po

he

MP

ic
nt

/SN

27
27 000
01 /T
0/T CP
CP /fo
/fo r V
r V I3.
I3 xh
443
.x os
ho ts
/TC
sts
P/R
equ
Co
i
mm red fo
uni r VC
cat
ion B an
& B d vc
ack bM
oun
up
te
e
th

DP

BA

Sp
I/v
/V

IH

Site
Recovery
Manager

9007/TCP/SOAP

8280/TCP/HTTP

Au

1/U

AD
P/

CS

iS

FlexLM
License Server

re

&

wa

External
API Client

P
TC
3/

rd

8230/TCP/Lookup
8240/TCP/Command
8250/TCP/Messaging
8282/TCP/HTTP
8283/TCP/HTTPS

80/TCP/SRM communication with remote vCenter


Server(Port 80 is used for the initial connection to
the remote site. After the initial HTTP connection is
made, the two sites establish an SSL connection
over port 80 for subsequent connections.)

44

Ha

vic
s
r
o
e
r
b e n rd S
r
e io o
- K icat ssw
n t
tio hen s Pa
a
ic t o
nt Au ber
e
th AD er
Au M - K
P
AD P/ tion
D
M
ca
PA P&U nti
/
e
CP /TC uth
sts s
o
T
/
h
t
5
A
.x hos
88 44 D
3
I
A
V .x
M
for VI 3
A
/
/P
CP /for
P
T
/
C
00 /TCP
/T
0
4
27 010
46
27
ter
un
o
M
cb
v
d
an kup
B
c
VC & Ba
r
o
d f on
ire icati
u
eq mun
R
/
CP Com
3/T
4
4

P
C
/T
45

&

Active Directory Server

+4

nt

/F
TP

es

88

16

lie

/T
CP

P/FTP

CS

21/TC

iS

21

re

S
/S

ftw
a

IC

NFS
Server

Syslog
Server

/S
o

P
/TC

SNMP
Server

/T
CP

22

60

1521/TCP/Oracle
1433/TCP/MS SQL
3306/TCP/MySQL
5432/TCP/PostgresSQL

389/TCP/Bi-direction
LDAP authentication with
Kerberos encryption
between vCenter Servers

tv

ia
br
HT
ow
TP
se
S
90 44
r
(
90 2 3
44
/
/
3/ TC TC
3)
TC P P
P/ /H /H
VM o s o s
t t
R ed Ma
em V n
ot M c age
e on m
VM n e
e n
C cti t
on vi
so ty
le

iSCSI
SAN

32

Linked
Linked
Linked
vCenter
vCenter
vCenter
Server
Server
Server

80

SMB
Server

rna

SSH
Server

Int
e

FTP
Server

ole P
)
ns TT
43
Co s H TPS
(4
VM vice HT
ce
o
rvi
er ices
tt
S
se
ien eb erv
PS
Cl
S
TT
re t W b
he en We
oH
rt
Sp gem ent
se
-v
VI aa m
ow
br
P/ an age
ct
TC P/M an
ire
3/
M
ed
90 0/TC CP/
/R
8 T
8 0 4 3/
84

SSH
Client

CP
/T
43

FTP
Client

Patch DB

Source: VMware Network Ports Compendium -v10Q3


This document was created using the official VMware icon and diagram library.
Copyright 2009 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware does not endorse or make any representations about third party information included in this document, nor does the inclusion of any VMware icon or diagram in this document imply such an endorsement.

902/TCP/Required for data transport during cloning


of system to be converted to target ESX/ESXi Host
443/TCP/Required for destination VM access when
target is ESX/ESXi/vCenter

VMware Virtual
Machines

VM
Third-party
Virtual
Machines

.sv2i

Third-party
System Images

Source