By default, the vCloud Tunneling Agent in the vSphere Replication appliance is configured to use TCP ports ranging between 10000 and 10010 to create tunnels to the cloud. All ESXi instances that might host replication source virtual machines must have their firewall configured to allow outgoing traffic on these ports.
For each tunnel to cloud, the vCloud Tunneling Agent allocates one unique port from the specified range. You can reconfigure ESXi hosts and the vCloud Tunneling Agent to reduce the number of open ports or to change the ports that are used to create tunnels to cloud.
After you reconfigure the ESXi hosts to use custom ports, you must configure the vCloud Tunneling Agent to use the same custom ports.
Prerequisites
Verify that the ports you selected to use for cloud tunnels are open for outgoing traffic on all ESXi servers that host replication sources.
Verify that you know the IP address of the vSphere Replication appliance in your environment. To check the IP address of the vSphere Replication appliance, open the Site Recovery user interface, select , and select the vCenter Server. On the Site tab, click Summary.
Verify that you have root user credentials for the vSphere Replication appliance. The IP address of the vSphere Replication appliance is listed on the Server row.
Verify that TCP port 22 is open on the vSphere Replication appliance, and that SSH connections are enabled. See Unable to Establish an SSH Connection to the vSphere Replication Appliance.
