VMware vRealize Operation Manager (vROPS) Network Port Gereksinimleri
  1. Anasayfa
  2. VMware vRealize Operation Manager (vROPS)

VMware vRealize Operation Manager (vROPS) Network Port Gereksinimleri

vRealize Operations Manager, bileşenleri için belirli bağlantı noktası (port) gereksinimlerine sahiptir.

Aşağıdaki resimde belirtilen tüm bağlantı noktaları varsayılan bağlantı noktalarıdır.

Standard olarak bir kurulum’da gerekli olabilecek portlar aşağıdaki gibidir.

123UDPUsed for network time protocol (NTP) synchronization to the master node. 
443TCPUsed to access the product UI and the admin UI
5433TCPUsed bu the master and replica nodes to replicate the global database (vPostgreSQL) when high availability enabled
7001TCPUsed by Cassandra for secure internode-cluster communication.
9042TCPUsed by Cassandra for secure client-related communication among nodes.
6061TCPUsed bu client to connect to the vFabric GemFire Locator to get the connection information to servers in the distributed system.
10000-10010TCP and UDPvFabric GemFire Server ephemenral port range
20000-20010TCP and UDPvFabric GemFire Locator ephemenral port range

vRealize Operations, vCenter Server ve vRealize Operations bileşenleriyle iletişim kurmak için birkaç ağ bağlantı noktası kullanır. En iyi güvenlik uygulaması olarak, vRealize Operations’ın üretimde çalışması için gereken gelen bağlantı noktalarını yapılandırın.

Bağlantı noktası 6061, sunucu yükünü izlemek ve istemcileri en az yüklü sunuculara göndermek için de kullanılır.

10000–10010 ve 20000–20010 bağlantı noktaları, tek noktaya yayın UDP mesajlaşması ve eşler arası dağıtılmış sistemde TCP hatası algılama için kullanılır.

7001 ve 9042 numaralı bağlantı noktaları, yalnızca kümenizdeki düğümler arasındaki iletişim için gereklidir. İnternete açık olmadıklarından emin olmak için bir güvenlik duvarının arkasında güvende olmalıdırlar.

vRealize Operations, sunucu bağlantı noktalarının özelleştirilmesini desteklemez.

vRealize Operations’ın bir production ortamında çalışması için aynı bağlantı noktaları gerekli değildir, ancak belirli gereksinimleri karşılayacak şekilde aşağıdaki portlar etkinleştirilebilir.

22TCP Used for SSH access to the vRealize Operations cluster
80TCP Redirects port to 443
3091 to 3101TCP Used to access data from VMware Horizon View

En iyi güvenlik uygulaması olarak, gerekli olmayan tüm bağlantı noktalarını ve protokolleri devre dışı bırakınız.

En iyi güvenlik uygulaması olarak, vRealize Operations Manager konsolunun güvenliğini sağlamanız ve Secure Shell (SSH), yönetici hesapları ve konsol erişimini yönetmeniz gerekir. 22 numaralı bağlantı noktasında veya başka herhangi bir bağlantı noktasında SSH hizmeti dinleme bir üretim ortamında devre dışı bırakılmalı ve 22 numaralı bağlantı noktası kapatılmalıdır.

80 numaralı bağlantı noktasını (HTTP) açık tutarsanız, 443 numaralı bağlantı noktasına (HTTPS) yönlendirme yapılır.

VRealize Operations Manager’dan bir Horizon View örneğini izlemek için 3091’den 3101’e (TCP) açık olmanız gerekir.

vROPS tarafından kullanılan bütün portların listesi yer almaktadır.

ProductReleasesPortProtocolSourceDestinationService DescriptionPurpose
vRealize Operations Manager7.5, 8.0, 8.1, 8.2, 8.3443TCPApplication Remote CollectorVCenterCommunication from Application Remote Collector to VCenterTo reach the EndPoints 
vRealize Operations Manager8.0, 8.1, 8.2, 8.3443TCPWitness NodeData NodeHTTPSConnectivity from the witness node within the same cluster
vRealize Operations Manager8.0, 8.1, 8.2, 8.380TCPWitness NodeData NodeHTTPConnectivity from the witness node within the same cluster
vRealize Operations Manager8.0, 8.1, 8.2, 8.3123UDPWitness NodeMaster NodeNTPConnectivity from the witness node within the same cluster
vRealize Operations Manager8.0, 8.1, 8.2, 8.3123UDPWitness NodeReplica NodeNTPConnectivity from the witness node within the same cluster
vRealize Operations Manager8.0, 8.1, 8.2, 8.38999TCPEndpoint VMApplication Remote CollectorCommunication from Telegraf Agent to Nginx service on Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager8.0, 8.1, 8.2, 8.35480TCPEndpoint VMApplication Remote CollectorAccessing VAMI interface of Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager8.0, 8.1, 8.2, 8.39000TCPMaster NodeApplication Remote CollectorCommunication from Master Node to ucpapi service on Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager8.0, 8.1, 8.2, 8.38883TCPMaster NodeApplication Remote CollectorCommunication from Master Node to Data Plane (Emqtt) on Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.380TCPData NodeRemote CollectorHTTPConnectivity from the data node within the same cluster. Port 80 is used to redirect all incoming HTTP traffic to HTTPS 443 port. You can close port 80 if it is not required. If you close port 80, you will see an error when you access vRealize Operations Manager without typing https:// in the browser.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.380TCPData NodeData NodeHTTPConnectivity from the data node within the same cluster. Port 80 is used to redirect all incoming HTTP traffic to HTTPS 443 port. You can close port 80 if it is not required. If you close port 80, you will see an error when you access vRealize Operations Manager without typing https:// in the browser.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.380TCPRemote CollectorData NodeHTTPConnectivity from the remote collector within the same cluster. Port 80 is used to redirect all incoming HTTP traffic to HTTPS 443 port. You can close port 80 if it is not required. If you close port 80, you will see an error when you access vRealize Operations Manager without typing https:// in the browser.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPData NodeRemote CollectorHTTPSConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPData NodeData NodeHTTPSConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.36061TCPData NodeMaster NodeCommunication with Geode Locator on MasterConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.36061TCPData NodeReplica NodeCommunication with Geode Locator on ReplicaConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.310000TCPData NodeData NodeCommunication with Geode server embedded in Analytics processConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.310002-10010TCPData NodeData NodeGeode TCP inter-node failure detection & peer-to-peer TCP communicationConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.310002-10010UDPData NodeData NodeGeode unicast UDP messagingConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.320002-20010TCPData NodeMaster NodeGeode TCP inter-node failure detection & peer-to-peer TCP communication for Replica LocatorConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.320002-20010UDPData NodeMaster NodeGeode unicast UDP messaging for Replica LocatorConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.35433TCPData NodeMaster NodeCommunication with Postgres Central DB on Master NodeConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.35433TCPData NodeReplica NodeCommunication with Postgres Central DB on Replica NodeConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.37001TCPData NodeData NodeCassandra inter-node communicationConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.39042TCPData NodeData NodeCassandra clientConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3123UDPData NodeMaster NodeNTPConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3123UDPData NodeReplica NodeNTPConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.36061TCPRemote CollectorMaster NodeCommunication with Geode Locator on MasterConnectivity from the remote collector within the same cluster
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.36061TCPRemote CollectorReplica NodeCommunication with Geode Locator on ReplicaConnectivity from the remote collector within the same cluster
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.310000TCPRemote CollectorData NodeCommunication with Geode server embedded in Analytics processConnectivity from the remote collector within the same cluster
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPRemote CollectorData NodeHTTPSConnectivity from the remote collector within the same cluster
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3123UDPRemote CollectorMaster NodeNTPConnectivity from the remote collector within the same cluster
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3123UDPRemote CollectorReplica NodeNTPConnectivity from the remote collector within the same cluster
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPEnd Point Operations Management Agent Analytics NodeHTTPSInternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPEnd Point Operations Management Agent Remote CollectorHTTPSInternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPAnalytics Nodes and Remote Collectors External ResourcesPlatform Services ControllerExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.353TCP, UDPAnalytics Nodes and Remote Collectors External ResourcesDNSExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3389TCPAnalytics Nodes and Remote Collectors External ResourcesLDAPExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3636TCPAnalytics Nodes and Remote Collectors External ResourcesLDAPSExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.33268, 3269TCPAnalytics Nodes and Remote Collectors External ResourcesGC TCPExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3123UDPAnalytics Nodes and Remote Collectors External ResourcesNTPExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.325TCPAnalytics Nodes and Remote Collectors External ResourcesSMTPExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3161UDPAnalytics Nodes and Remote Collectors External ResourcesSNMPExternal Communications
vRealize Operations Manager8.0, 8.1, 8.2, 8.34505TCPEndpoint VMApplication Remote CollectorCommunication from Telegraf Agent to Control Plane on Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager8.0, 8.1, 8.2, 8.34506TCPEndpoint VMApplication Remote CollectorCommunication from Telegraf Agent to Control Plane on Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager8.0, 8.1, 8.2, 8.38883TCPEndpoint VMApplication Remote CollectorCommunication from Telegraf Agent to Control Plane (Emqtt) on Application Remote CollectorPort Information for Connectivity from Application Remote Collector
vRealize Operations Manager8.0, 8.1, 8.2, 8.322TCPExternal ResourcesWitness NodeSSHExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.320002-20010UDPData NodeReplica NodeGeode unicast UDP messaging for Master LocatorConnectivity from the data node within the same cluster.
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.320002-20010TCPData NodeReplica NodeGeode TCP inter-node failure detection & peer-to-peer TCP communication for Master LocatorConnectivity from the data node within the same cluster.
vRealize Operations Manager7.5, 8.0, 8.1, 8.2, 8.3443TCPApplication Remote CollectorESXi where the End-Point VMs are hostedPush install bits to End-PointCommunicate with End-Points
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPAnalytics Nodes and Remote CollectorsvCenterHTTPSExternal Communication to VMware vSphere Solution (Data source)
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.35989TCPAnalytics Nodes and Remote Collectors External ResourcesCIM (Common Information Model) ServiceExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.210433TCPvRealize Operations ManagervSphere 5.xHTTPRetrieve inventory tag information
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3443TCPvCentervRealize Operations ManagerUnicorn ServiceExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.322TCPExternal ResourcesAnalytics Nodes and Remote Collectors SSHExternal Communications
vRealize Operations Manager6.7, 7.0, 7.5, 8.0, 8.1, 8.2, 8.3Refer Adapter documentationTCPAnalytics Nodes and Remote Collectors External ResourcesAdaptersExternal Communications
vRealize Operations Manager8.0, 8.1, 8.2, 8.353TCP, UDPWitness NodeExternal ResourcesDNSExternal Communications
vRealize Operations Manager8.0, 8.1, 8.2, 8.3443UDPData NodeWitness NodeHTTPSConnectivity from the data node within the same cluster.
vRealize Operations Manager8.0, 8.1, 8.2, 8.3123UDPWitness NodeExternal ResourcesNTPExternal Communications