1.0
Table Of Contents
- About this Guide
- Introducing Hybrid Cloud Manager™
- Understanding the Hybrid Cloud Manager Installation Process
- Choosing a Deployment Architecture
- Preparing Your Installation Environment
- Installing and Configuring Hybrid Cloud Manager
- Install the Hybrid Cloud Manager Appliance
- Register the Hybrid Cloud Manager with the vCenter
- Configuring the Hybrid Cloud Manager for vCenters with an External Lookup Service
- Register the Hybrid Cloud Manager with a vCloud Air Endpoint
- Installing and Configuring Hybrid Services
- Configuration Overview
- Start Appliance Installation and Configuration
- Configure the Hybrid Cloud Gateway
- Configure the Network Extension Service
- Stretching an L2 Network to vCloud Air
- Migrating a Virtual Machine to vCloud Air
- Administration
- Troubleshooting
vCloud Air® Hybrid Cloud Manager™ Installation and Administration Guide
Page 12
Table 3: Port Access Requirements
Source Target Port Protocol
Purpose Services
HCM Customer DNS 53 TCP/UDP Name resolution. DNS
Hybrid Cloud Manager
vCenter Server 443 TCP Hybrid Cloud Manager REST service. HTTPS
Web Browser Hybrid Cloud Manager 9443 TCP
Hybrid Cloud Manager Virtual Appliance Management
Interface for Hybrid Cloud Manager system configuration.
HTTPS
Admin Network Hybrid Cloud Manager 22 SSH
Administrator SSH access to Hybrid Cloud Manager. Only
necessary if you configured SSH in Step 11 on page 15.
HTTPS
Hybrid Cloud Manager ESXi Hosts 902 TCP
Send management and provisioning instructions from Hybrid
Cloud Manager to ESXi Hosts in vCloud Air.
internal
Hybrid Cloud Manager Cloud Gateway 8123 TCP
Send host-based replication service instructions to the Hybrid
Cloud Gateway.
HTTP
Hybrid Cloud Manager Cloud Gateway 9443 TCP
Send management instructions to the local Hybrid Cloud
Gateway using the REST API.
HTTPS
Cloud Gateway L2C 443 TCP
Send management instructions from Cloud Gateway to L2C
when L2C uses the same path as the Hybrid Cloud Gateway.
HTTP
Cloud Gateway L2C 8443 TCP
Bidirectional management instructions from Cloud Gateway
to L2C, when L2C uses an alternate data path.
HTTP
L2C L2C (remote) 443 TCP
Bidirectional connection between local and remote L2C
appliances when using an alternate data path.
HTTP
Cloud Gateway ESXi Hosts 902 TCP Managing and OVF deployment. internal
ESXi Hosts Cloud Gateway
31031
44046
TCP Internal host-based replication traffic. internal
Cloud Gateway (local)
Cloud Gateway
(remote)
50 IP
IP protocol to encapsulate hybridnetwork traffic for the
bidirectional tunnel.
IPSEC
Cloud Gateway (local)
Cloud Gateway
(remote)
4500 UDP
Internet key exchange (IKEv2) to encapsulate workload for the
bidirectional tunnel. Network Address Translation-Traversal
(NAT-T) is also supported.
IPSEC
Cloud Gateway (local)
Cloud Gateway
(remote)
500 UDP Internet key exchange (ISAKMP) for the bidirectional tunnel. IPSEC