You can perform migrations though a proxy server when the vCloud Director Extender components do not have a direct connection to the Internet.
Cloud Provider Proxy Configuration
The proxy server configuration requires you to provide a public IP endpoint and configure rules to route the network traffic to vCloud Director Extender components.
Prerequisites for configuring the correct communication between the vCloud Director Extender components behind a proxy server:
The vCloud Director Extender Cloud Appliance must be accessible from the tenant site.
The tenant Replicator instances must be accessible from the cloud Replicator instances.
The tenant Replicator instances must be accessible from the Replication Manager that is deployed in the cloud.
The tenant Replicator instances can access the tenant ESXi hosts.
The cloud Replicator instances can access the cloud ESXi hosts.
The cloud Replication Manager must be able to access the tenant Replicator instances.
If the cloud Replicator instances are deployed behind the proxy server and are not accessible from the Replication Manager, you must configure the necessary firewall rules to open port 443 on all Replicator instances. For example, traffic must be allowed from vCD-Extender-On-Premise-Appliance-IP:443 to Proxy-Server-IP-Address:443.
The Replication Manager must be accessible for all Replicator instances and the vCloud Director Extender On-Premise Appliance in the tenant environment. You must open port 8044 on the Replication Manager. For example, traffic must be allowed from Replication-Manager-IP:8044 to Proxy-Server-IP-Address2:8044.
Tenant Proxy Configuration
The tenant Replicator instances must be accessible from the proxy server. Tenant proxy configuration, requires you to expose a public IP with port 443, that is mapped to the tenant Replicator private IP. For example, traffic must be allowed from Tenant-Replicator-IP:443 to Proxy-Server-IP-Address.
Endpoint Proxy URL
While configuring the Replicator and Replication Manager instances, you optionally enter an Endpoint URL. If the Replicator or the Replication Manager is deployed behind the proxy server, you must enter the appropriate public IP address and port in the following format: Public-IP-Address:Port-Number. The default Replication Manager port is 8044, but you can configure the Replication Manager to use a custom port, as long as it is accessible through the proxy. For more information, see Service Provider Configuration and Tenant Configuration.
Data Path
Make sure that the ESXi hosts in both tenant and provider environments are accessible on ports 902, 80, and 443. Replicator instances use ESXi port 902 for data path. Ports 80 and 443 are used for the management path.