vRealize Operations Manager, bileşenleri için belirli bağlantı noktası (port) gereksinimlerine sahiptir.
Aşağıdaki resimde belirtilen tüm bağlantı noktaları varsayılan bağlantı noktalarıdır.
Standard olarak bir kurulum’da gerekli olabilecek portlar aşağıdaki gibidir.
123 | UDP | Used for network time protocol (NTP) synchronization to the master node. |
443 | TCP | Used to access the product UI and the admin UI |
5433 | TCP | Used bu the master and replica nodes to replicate the global database (vPostgreSQL) when high availability enabled |
7001 | TCP | Used by Cassandra for secure internode-cluster communication. |
9042 | TCP | Used by Cassandra for secure client-related communication among nodes. |
6061 | TCP | Used bu client to connect to the vFabric GemFire Locator to get the connection information to servers in the distributed system. |
10000-10010 | TCP and UDP | vFabric GemFire Server ephemenral port range |
20000-20010 | TCP and UDP | vFabric GemFire Locator ephemenral port range |
vRealize Operations, vCenter Server ve vRealize Operations bileşenleriyle iletişim kurmak için birkaç ağ bağlantı noktası kullanır. En iyi güvenlik uygulaması olarak, vRealize Operations’ın üretimde çalışması için gereken gelen bağlantı noktalarını yapılandırın.
Bağlantı noktası 6061, sunucu yükünü izlemek ve istemcileri en az yüklü sunuculara göndermek için de kullanılır.
10000–10010 ve 20000–20010 bağlantı noktaları, tek noktaya yayın UDP mesajlaşması ve eşler arası dağıtılmış sistemde TCP hatası algılama için kullanılır.
7001 ve 9042 numaralı bağlantı noktaları, yalnızca kümenizdeki düğümler arasındaki iletişim için gereklidir. İnternete açık olmadıklarından emin olmak için bir güvenlik duvarının arkasında güvende olmalıdırlar.
vRealize Operations, sunucu bağlantı noktalarının özelleştirilmesini desteklemez.
vRealize Operations’ın bir production ortamında çalışması için aynı bağlantı noktaları gerekli değildir, ancak belirli gereksinimleri karşılayacak şekilde aşağıdaki portlar etkinleştirilebilir.
22 | TCP | Used for SSH access to the vRealize Operations cluster |
80 | TCP | Redirects port to 443 |
3091 to 3101 | TCP | Used to access data from VMware Horizon View |
En iyi güvenlik uygulaması olarak, gerekli olmayan tüm bağlantı noktalarını ve protokolleri devre dışı bırakınız.
En iyi güvenlik uygulaması olarak, vRealize Operations Manager konsolunun güvenliğini sağlamanız ve Secure Shell (SSH), yönetici hesapları ve konsol erişimini yönetmeniz gerekir. 22 numaralı bağlantı noktasında veya başka herhangi bir bağlantı noktasında SSH hizmeti dinleme bir üretim ortamında devre dışı bırakılmalı ve 22 numaralı bağlantı noktası kapatılmalıdır.
80 numaralı bağlantı noktasını (HTTP) açık tutarsanız, 443 numaralı bağlantı noktasına (HTTPS) yönlendirme yapılır.
VRealize Operations Manager’dan bir Horizon View örneğini izlemek için 3091’den 3101’e (TCP) açık olmanız gerekir.
vROPS tarafından kullanılan bütün portların listesi yer almaktadır.
Product | Releases | Port | Protocol | Source | Destination | Service Description | Purpose |
vRealize Operations Manager | 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Application Remote Collector | VCenter | Communication from Application Remote Collector to VCenter | To reach the EndPoints |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Witness Node | Data Node | HTTPS | Connectivity from the witness node within the same cluster |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 80 | TCP | Witness Node | Data Node | HTTP | Connectivity from the witness node within the same cluster |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Witness Node | Master Node | NTP | Connectivity from the witness node within the same cluster |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Witness Node | Replica Node | NTP | Connectivity from the witness node within the same cluster |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 8999 | TCP | Endpoint VM | Application Remote Collector | Communication from Telegraf Agent to Nginx service on Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 5480 | TCP | Endpoint VM | Application Remote Collector | Accessing VAMI interface of Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 9000 | TCP | Master Node | Application Remote Collector | Communication from Master Node to ucpapi service on Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 8883 | TCP | Master Node | Application Remote Collector | Communication from Master Node to Data Plane (Emqtt) on Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 80 | TCP | Data Node | Remote Collector | HTTP | Connectivity from the data node within the same cluster. Port 80 is used to redirect all incoming HTTP traffic to HTTPS 443 port. You can close port 80 if it is not required. If you close port 80, you will see an error when you access vRealize Operations Manager without typing https:// in the browser. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 80 | TCP | Data Node | Data Node | HTTP | Connectivity from the data node within the same cluster. Port 80 is used to redirect all incoming HTTP traffic to HTTPS 443 port. You can close port 80 if it is not required. If you close port 80, you will see an error when you access vRealize Operations Manager without typing https:// in the browser. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 80 | TCP | Remote Collector | Data Node | HTTP | Connectivity from the remote collector within the same cluster. Port 80 is used to redirect all incoming HTTP traffic to HTTPS 443 port. You can close port 80 if it is not required. If you close port 80, you will see an error when you access vRealize Operations Manager without typing https:// in the browser. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Data Node | Remote Collector | HTTPS | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Data Node | Data Node | HTTPS | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 6061 | TCP | Data Node | Master Node | Communication with Geode Locator on Master | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 6061 | TCP | Data Node | Replica Node | Communication with Geode Locator on Replica | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 10000 | TCP | Data Node | Data Node | Communication with Geode server embedded in Analytics process | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 10002-10010 | TCP | Data Node | Data Node | Geode TCP inter-node failure detection & peer-to-peer TCP communication | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 10002-10010 | UDP | Data Node | Data Node | Geode unicast UDP messaging | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 20002-20010 | TCP | Data Node | Master Node | Geode TCP inter-node failure detection & peer-to-peer TCP communication for Replica Locator | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 20002-20010 | UDP | Data Node | Master Node | Geode unicast UDP messaging for Replica Locator | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 5433 | TCP | Data Node | Master Node | Communication with Postgres Central DB on Master Node | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 5433 | TCP | Data Node | Replica Node | Communication with Postgres Central DB on Replica Node | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 7001 | TCP | Data Node | Data Node | Cassandra inter-node communication | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 9042 | TCP | Data Node | Data Node | Cassandra client | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Data Node | Master Node | NTP | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Data Node | Replica Node | NTP | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 6061 | TCP | Remote Collector | Master Node | Communication with Geode Locator on Master | Connectivity from the remote collector within the same cluster |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 6061 | TCP | Remote Collector | Replica Node | Communication with Geode Locator on Replica | Connectivity from the remote collector within the same cluster |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 10000 | TCP | Remote Collector | Data Node | Communication with Geode server embedded in Analytics process | Connectivity from the remote collector within the same cluster |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Remote Collector | Data Node | HTTPS | Connectivity from the remote collector within the same cluster |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Remote Collector | Master Node | NTP | Connectivity from the remote collector within the same cluster |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Remote Collector | Replica Node | NTP | Connectivity from the remote collector within the same cluster |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | End Point Operations Management Agent | Analytics Node | HTTPS | Internal Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | End Point Operations Management Agent | Remote Collector | HTTPS | Internal Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Analytics Nodes and Remote Collectors | External Resources | Platform Services Controller | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 53 | TCP, UDP | Analytics Nodes and Remote Collectors | External Resources | DNS | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 389 | TCP | Analytics Nodes and Remote Collectors | External Resources | LDAP | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 636 | TCP | Analytics Nodes and Remote Collectors | External Resources | LDAPS | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 3268, 3269 | TCP | Analytics Nodes and Remote Collectors | External Resources | GC TCP | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Analytics Nodes and Remote Collectors | External Resources | NTP | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 25 | TCP | Analytics Nodes and Remote Collectors | External Resources | SMTP | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 161 | UDP | Analytics Nodes and Remote Collectors | External Resources | SNMP | External Communications |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 4505 | TCP | Endpoint VM | Application Remote Collector | Communication from Telegraf Agent to Control Plane on Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 4506 | TCP | Endpoint VM | Application Remote Collector | Communication from Telegraf Agent to Control Plane on Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 8883 | TCP | Endpoint VM | Application Remote Collector | Communication from Telegraf Agent to Control Plane (Emqtt) on Application Remote Collector | Port Information for Connectivity from Application Remote Collector |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 22 | TCP | External Resources | Witness Node | SSH | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 20002-20010 | UDP | Data Node | Replica Node | Geode unicast UDP messaging for Master Locator | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 20002-20010 | TCP | Data Node | Replica Node | Geode TCP inter-node failure detection & peer-to-peer TCP communication for Master Locator | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Application Remote Collector | ESXi where the End-Point VMs are hosted | Push install bits to End-Point | Communicate with End-Points |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | Analytics Nodes and Remote Collectors | vCenter | HTTPS | External Communication to VMware vSphere Solution (Data source) |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 5989 | TCP | Analytics Nodes and Remote Collectors | External Resources | CIM (Common Information Model) Service | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2 | 10433 | TCP | vRealize Operations Manager | vSphere 5.x | HTTP | Retrieve inventory tag information |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 443 | TCP | vCenter | vRealize Operations Manager | Unicorn Service | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | 22 | TCP | External Resources | Analytics Nodes and Remote Collectors | SSH | External Communications |
vRealize Operations Manager | 6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3 | Refer Adapter documentation | TCP | Analytics Nodes and Remote Collectors | External Resources | Adapters | External Communications |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 53 | TCP, UDP | Witness Node | External Resources | DNS | External Communications |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 443 | UDP | Data Node | Witness Node | HTTPS | Connectivity from the data node within the same cluster. |
vRealize Operations Manager | 8.0, 8.1, 8.2, 8.3 | 123 | UDP | Witness Node | External Resources | NTP | External Communications |