Services network connectivity

Allow the required TCP access in the site for the correct operation of VMware Cloud Director Availability services.

For information about the network ports required for the correct operation of VMware Cloud Director Availability, see VMware Cloud Director Availability - VMware Ports and Protocols.

For information about the services of VMware Cloud Director Availability, see Services and network ports.

For information about the network requirements and the external interfaces between the paired sites of VMware Cloud Director Availability, select your version and depending on the site, see:

Network requirements in the Cloud Director site in the Installation, Configuration, and Upgrade Guide in the Cloud Director Site.
Deployment requirements On-Premises in the Installation, Configuration, and Upgrade Guide in On-Premises and Provider Site.
Deployment architecture and requirements for vSphere DR and Migration in the Installation, Configuration, and Upgrade Guide in On-Premises and Provider Site.

Services Network Connectivity

VMware Cloud Director Availability services must be able to communicate with each other and with the following disaster recovery infrastructure.

The Cloud Service must have TCP access to the Manager Service, to VMware Cloud Director, to vCenter Server, and to the Platform Services Controller, depending on where the vCenter Server Lookup service is hosted.
The Manager Service must have TCP access to all the Replicator Service instances in both local, and in remote sites and to the vCenter Server Lookup service.
All the Replicator Service instances must have a TCP access to the Manager Service, to the vCenter Server instance, and to the vCenter Server Lookup service.

Note: The VMware Cloud Director Availability services use end-to-end encryption for the communication across sites. For example, when a Replicator Service on site 1 is communicating to a Replicator Service on site 2, VMware Cloud Director Availability expects that the TLS session is terminated at each Replicator Service.

VMware Cloud Director Availability does not support any TLS terminating products or solutions placed between the appliances, for example, HAProxy, Nginx, Fortinet, and others. If such tools are in place, they must be configured in pass-thru mode, also known as TCP mode, to prevent from interfering with the TLS traffic of VMware Cloud Director Availability.

For more information and a network diagram that shows the connectivity between all VMware Cloud Director Availability components, see Network Requirements in Installation, Configuration, and Upgrade Guide in the Cloud Director Site and in Installation, Configuration, and Upgrade Guide in On-Premises and Provider Site.