Dell VxRail Network Planning Guide
Appendix D: VxRail open port requirements
Specific firewall settings for the deployment of a VxRail cluster are provided.
The VxRail cluster must connect to specific applications in your data center. DNS is required, and NTP is optional. Open the necessary ports to enable connectivity to the external syslog server and for LDAP and SMTP.
Before you upgrade to VxRail 8.0.300 or later, enable new ports in the network environment. For more information, see KB 226493.
| Description | Source Devices | Destination Devices | Protocol | Ports |
|---|---|---|---|---|
| DNS | VxRail Manager, Dell iDRAC | DNS Servers | UDP | 53 |
| NTP Client | Host ESXi management interface, Dell iDRAC, VMware vCenter Servers, VxRail Manager | NTP Servers | UDP | 123 |
| SYSLOG | DNS Servers Host ESXi Management Interface, VMware vRealize Log Insight | Syslog Server | TCP | 514 |
| LDAP | VMware vCenter Servers | LDAP Server | TCP | 389, 636 |
| SMTP | Secure connect gateway VMs, VMware vRealize Log Insight. | SMTP Servers | TCP | 25 |
Open the necessary firewall ports to enable IT administrators to deploy the VxRail cluster.
| Description | Source Devices | Destination Devices | Protocol | Ports |
|---|---|---|---|---|
| ESXi Management | Administrators | Host ESXi management interface | TCP, UDP | 902 |
| VxRail Management UI/Web Interfaces | Administrators | VMware vCenter Server, VxRail Manager, Host ESXi management, Dell iDRAC port, VMware vRealize Log Insight | TCP | 80, 443 |
| Dell server management | Administrators | Dell iDRAC | TCP | 623, 5900, 5901 |
| SSH and SCP | Administrators | Host ESXi management, VMware vCenter Server, Dell iDRAC port, VxRail Manager Console | TCP | 22 |
To use a customer-managed VMware vCenter Server , open the necessary ports so that the VMware vCenter Server instance can connect to the ESXi hosts.
| Description | Source Devices | Destination Devices | Protocol | Ports |
|---|---|---|---|---|
| VMware vSphere Clients to VMware vCenter Server | VMware vSphere Clients | VMware vCenter Server | TCP | 5480, 8443, 9443, 10080, 10443 |
| Managed Hosts to VMware vCenter Server | Host ESXi Management | VMware vCenter Server | TCP | 443, 902, 5988,5989, 6500, 8000, 8001 |
| Managed Hosts to VMware vCenter Server Heartbeat | Host ESXi Management | VMware vCenter Server | UDP | 902 |
Other firewall port settings may be necessary depending on your data center environment. VxRail manages the VxRail Customer Firewall Rules interactive workbook that requires Dell customer credentials. If you do not have Dell login credentials, contact your account team. The following documents provide more information:
| Description | Reference |
|---|---|
| VMware Ports and Protocols | VMware Ports and Protocols |
| Dell iDRAC Port Requirements | How to configure the iDRAC 9 for Dell PowerEdge |
| Secure connect gateway documentation | Dell Secure Connect Gateway Documentation |
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\