The VMware vCenter Server system must be able to send data to every managed host and receive data from every vSphere Web Client. For migration and provisioning activities between managed hosts, the source and destination hosts must be able to receive data from each other.

For information about ports required for vCenter Server on Windows, see Required Ports for vCenter Server.

VMware uses designated ports for communication. Additionally, the managed hosts monitor designated ports for data from the vCenter Server system. The vCenter Server Appliance is preconfigured to use the ports listed in Ports Required for the vCenter Server Appliance. For custom firewalls, you must manually open the required ports. If you have a firewall between two managed hosts and you want to perform source or target activities, such as migration or cloning, you must configure a means for the managed hosts to receive data.

Table 1. Ports Required for the vCenter Server Appliance
Port Description
80 vCenter Server requires port 80 for direct HTTP connections. Port 80 redirects requests to HTTPS port 443. This redirection is useful if you accidentally use http://server instead of https://server.
443 The vCenter Server system uses port 443 to monitor data transfer from SDK clients.
902 The default port that the vCenter Server system uses to send data to managed hosts. Managed hosts also send a regular heartbeat over UDP port 902 to the vCenter Server system. This port must not be blocked by firewalls between the server and the hosts or between hosts.
8080 Web Services HTTP. Used for the VMware VirtualCenter Management Web Services.
8443 Web Services HTTPS. Used for the VMware VirtualCenter Management Web Services.
10080 vCenter Inventory Service HTTP
10443 vCenter Inventory Service HTTPS
10109 vCenter Inventory Service database
514 vSphere Syslog Collector server
1514 vSphere Syslog Collector server (SSL)
6500 Network coredump server (UDP)
6501 Auto Deploy service
6502 Auto Deploy management
9090 vSphere Web Client HTTP
9443 vSphere Web Client HTTPS
5480 vCenter Server Appliance Web user interface HTTPS
5489 vCenter Server Appliance Web user interface CIM service
22 System port for SSHD

To have the vCenter Server system use a different port to receive vSphere Web Client data, see the vCenter Server and Host Management documentation.

For a discussion of firewall configuration, see the vSphere Security documentation.