In vCloud director if you are deploying the vCD Cells on a different network to your ESXi hosts or indeed your vCenter server there will most likely be a Firewall in-between.
This post will highlight some of the key TCP Firewall port Requirements and a brief description
vCD Cell to ESXi hosts
443 - https to ESXi hosts, required to prepare hosts
902
903
5212 - vCD Agent
vCD Cell to vCenter Server
443
902
903
vCD Cell to Oracle
1512
vCD Cell to SQL
1433
vCD Cell to Message Bus (ActiveMQ) - Bi-directional
61611
61616
vCD Cell to NFS Server - Bi-directional
111
920
vShield Manager to ESXi hosts
443
902
903
vShield Manager to vCenter - Bi-directional
443
These are the bare minimum required to standup vCD with firewalls between vCD, ESXi & vCenter.
There are additional standard ports for infrastructure services like DNS etc, but i wont document these.
Hope this helps.
I'm sure there may be some I have missed, please feel free to comment.
No comments:
Post a Comment