6.1
Table Of Contents
- VMware vSphere Replication Security Guide
- Contents
- About VMware vSphere Replication Security Guide
- Updated Information
- vSphere Replication Security Reference
- Services, Ports, and External Interfaces that the vSphere Replication Virtual Appliance Uses
- vSphere Replication Configuration Files
- vSphere Replication Private Key, Certificate, and Keystore
- vSphere Replication License and EULA File
- vSphere Replication Log Files
- vSphere Replication User Accounts
- Security Updates and Patches for vSphere Replication
- Index
When you create a connection to the cloud, the vCloud Tunneling Agent in the vSphere Replication
appliance creates a tunnel to secure the transfer of replication data to your cloud organization.
Table 2‑4. Ports Required for Cloud Replications
Source Destination Port Protocol Description
The ESXi host at the
source site
The vCenter Server
at the source site
80 TCP The vCenter Server
reverse proxy
forwards VIB
(vCloud Air Disaster
Recovery rewall
rules) download
request to the
vSphere Replication
appliance.
The
vSphere Replication
appliance at the source
site
vCloud API 443 REST over HTTPS vSphere Replication
appliance connects to
this port to send
replication data to a
cloud organization.
The ESXi host at the
source site
The
vSphere Replication
appliance at the
source site
10000-10010 TCP The vCloud Tunneling
Agent opens one of
these ports on the
vSphere Replication
appliance. ESXi hosts
connect to that port to
send replication data
to a cloud
organization.
Open Source and Third-Party Components
For the complete text of the open source licenses, a list of all open source and third-party components, and
the open source code used in vSphere Replication, you can go to
hp://www.vmware.com/download/open_source.html and see the VMware vSphere Replication Open Source
and Licenses section under the VMware vSphere Open Source link. If certain open source license requires it, the
vSphere Replication Open Source Disclosure Package (ODP) contains text les with instructions how to
build and replace the software libraries.
vSphere Replication Configuration Files
Some conguration les contain seings that aect the security of vSphere Replication.
Note All security-related resources are protected with the correct permissions and ownership. Do not
change the ownership or permissions of these les.
File Location Description
/opt/vmware/hms/conf/hms-configuration.xml
The default system conguration of the
vSphere Replication Management server.
/opt/vmware/hms/conf/embedded_db.cfg
The conguration le for the embedded database .
VMware vSphere Replication Security Guide
12 VMware, Inc.