Ports and protocols allow node-to-node communication paths in NSX-T Data Center, the paths are secured and authenticated, and a storage location for the credentials are used to establish mutual authentication.
The required ports and protocols must be open on both the physical and host hypervisor firewalls.
By default, all certificates are self-signed certificates. The northbound GUI and API certificates and private keys can be replaced by CA signed certificates.
- KVM: MPA, netcpa, nsx-agent, OVS
- ESXi: netcpa, ESX-DP (in the kernel)