vCenter

 View Only
  • 1.  Firewall rules between VMware Update Manager (6.5) and ESXi host

    Posted Nov 13, 2017 01:39 PM

    Hello All,

    We have VMware vCenter Update Manager (VUM) 6.5 installed on a different server, instead of using vCenter server. There is external Firewall existing in the VMware Infrastructure

    Can someone verify what ports need to be open to allow successful communication (Scan for Update, Remediate) between VUM and ESXi host(s)?

    Source        Destination       Incoming port/Protocol

    ========================================

    VUM            ESXi_host          80 /TCP (not sure?)

                                                   902 /TCP

    ----------------------------------------------------------------------

    ESXi_host   VUM                   80 /TCP

                                                   9084 /TCP

                                                   9000-9100 /TCP

    ----------------------------------------------------------------------

    VMware Article: 1004543

    Any help would be appreciated.

    Regards



  • 2.  RE: Firewall rules between VMware Update Manager (6.5) and ESXi host

    Posted Nov 14, 2017 05:45 AM

    this is from updatemanager 6.5 documention

    TCP Port Number

    Description

    80

    The port used by Update Manager to connect to vCenter Server.

    9084

    The port used by ESXi hosts to access host patch downloads over HTTP.

    902

    The port used by Update Manager to push host upgrade files.

    8084

    The port used by Update Manager Client plug-in to connect to the Update Manager SOAP server.

    9087

    The HTTPS port used by Update Manager Client plug-in to upload host upgrade files.

    Update Manager Network Connectivity Settings



  • 3.  RE: Firewall rules between VMware Update Manager (6.5) and ESXi host
    Best Answer

    Posted Nov 16, 2017 05:45 PM

    Firewall rules between vSphere Update Manager (VUM) and ESXi host (6.x)

    ESXi_host    => VUM               TCP: 80,443,9084,9000-9100

    VUM             => ESXi_host      TCP: 902, 735(obsolete VM OS updates)

    VMware Knowledge Base

    2131180_NetworkPortDiagram-vSphere-6x-ReferenceTable-v2.pdf



  • 4.  RE: Firewall rules between VMware Update Manager (6.5) and ESXi host

    Posted Jul 09, 2018 03:49 AM

    Can I confirm?

    I would believe that the port 735 / tcp for VM updates is still used for the VMtools updates (agreed that the VM OS updated are obsolete), but for tool updatesis 735 still the port used?

    Thanks

    Gus