To access the Virtual Machine Remote Console (VMRC) on VMs in your cloud SDDC, ensure that you have configured a management gateway firewall rule that allows access to ESXi (port 903).


You must create a management VPN before you can use VMRC.


Modify the management gateway firewall rules to allow access to port 903.

Both the MGW VPN Wizard and the Firewall Rules Accelerator create this firewall rule. Skip this step if you have used either of these tools to create firewall rules for the management gateway. To add this rule manually, follow these steps.

  1. Log in to the VMC Console at
  2. Click View Details on the SDDC card.
  3. Click Network.
  4. Under Management Gateway, click Firewall Rules.
  5. Click Add Rule and set a rule to enable access to port 903.




    IP address or CIDR block, either public or from an on-premises data center connected by a VPN tunnel


    ESXi Management


    Remote Console