Horizon 7 components exchange messages by using several different protocols.

Figure 1 illustrates the protocols that each component uses for communication when a security server is not configured. That is, the secure tunnel for RDP, the Blast Secure Gateway, and the PCoIP Secure Gateway are not turned on. This configuration might be used in a typical LAN deployment.

Figure 1. View Components and Protocols Without a Security Server
A diagram shows View Manager components and protocols without a security server.
Note: This figure shows direct connections for clients using either PCoIP or RDP. The default setting, however, is to have direct connections for PCoIP and tunnel connections for RDP.

See Table 1 for the default ports that are used for each protocol.

Figure 2 illustrates the protocols that each component uses for communication when a security server is configured. This configuration might be used in a typical WAN deployment.

Figure 2. View Components and Protocols with a Security Server
A diagram shows View Manager components and protocols with a security server.

Table 1 lists the default ports that are used by each protocol. If necessary, to comply with organization policies or to avoid contention, you can change which port numbers are used.

Table 1. Default Ports
Protocol Port
JMS TCP port 4001

TCP port 4002

AJP13 TCP port 8009
Note: AJP13 is used in a security server configuration only.
HTTP TCP port 80
HTTPS TCP port 443
MMR/CDR For multimedia redirection and client drive redirection, TCP port 9427
RDP TCP port 3389
Note: If the Connection Server instance is configured for direct client connections, these protocols connect directly from the client to the remote desktop and are not tunneled through the View Secure GW Server component.
SOAP TCP port 80 or 443
PCoIP

TCP port 4172

UDP ports 4172, 50002, 55000

USB redirection TCP port 32111. This port is also used for time zone synchronization.
VMware Blast Extreme

TCP ports 8443, 22443

UDP ports 443, 8443, 22443

HTML Access TCP ports 8443, 22443

TCP Ports for Connection Server Intercommunication

Connection Server instances in a group use additional TCP ports to communicate with each other. For example, Connection Server instances use port 4100 or 4101 to transmit JMS inter-router (JMSIR) traffic to each other. Firewalls are generally not used between the Connection Server instances in a group.