VMware View port numbers

This post has already been read 18794 times!

TCP Ports for View Connection Servers

I got several questions from different customers about which firewall ports need to be open when working with VMware View 5.1

Here is a complete list of all ports that needs to be open for View to work in a firewalled environment.

Source Destination Port Protocol
View Desktop Connection Server 4001 JMS
Replica Connection Servers Connection Server 4100 JMSIR
Replica Connection Servers Connection Server 8009 AJP13
Admin Browser Connection Server 80 HTTP
Admin Browser Connection Server 443 HTTPS
Client 1 Connection Server 4172 PCoIP(TCP and UDP)
Client 2 Connection Server 443 HTTPS
Connection Server 1 View Desktop Subnet 4172 PCoIP
Connection Server 2 View Desktop Subnet 3389 RDP
Connection Server Virtual Center Server 443 HTTPS
Connection Server Virtual Center Server 80 HTTP
Connection Server Virtual Center Server(View Composer) 18443 HTTPS
TCP Ports for View Security Server
Source Destination Port Protocol
Client Security Server 443 HTTPS
Client Security Server 80 HTTP
Client 1 Security Server 4172 PCoIP
(TCP and UDP)
Security Server1 View Desktop Subnet 4172 PCoIP
(TCP and UDP)
Security Server View Desktop Subnet 3389 RDP
Security Server Connection Broker 8009 AJP13
Security Server Connection Broker 4001 JMS

Note: Port 80 is required if SSL is Disabled

 

Firewall rules for DMZ based Security Servers

Front-End Firewall Rules
Source Destination Port Protocol
Any External IP Security Server 80 HTTP
Any External IP Security Server 443 HTTPS
Any External IP Security Server 1 4172 PCoIP
(TCP and UDP)
Back-End Firewall Rules
Source Destination Port Protocol
Security Server View Transfer Server 80 HTTP
Security Server View Transfer Server 443 HTTPS
Security Server Connection Server 8009 HTTPS
Security Server Connection Server 4001 JMS
Security Server View Desktop 3389 RDP
Security Server 1 View Desktop 4172 PCoIP
(TCP and UDP)
Security Server View Desktop 32111 USB Redirection
About Marco Broeken

Marco Broeken is Author of this blog and owner of vSpecialist Consulting and has 20 years experience in IT. Marco has been rewarded with the vExpert status from 2011 - 2018.

Comments

  1. One is missing, Port 500/UDP for the IPSEC-tunnel between Security Server and Connection broker, documented here: http://pubs.vmware.com/view-51/index.jsp?topic=%2Fcom.vmware.view.planning.doc%2FGUID-B8D3225D-0CB2-42D3-B2B8-EB7DED0F3B5E.html

    // Joel

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.