The operation of vSphere Replication depends on certain services, ports, and external interfaces.

vSphere Replication Services

The operation of vSphere Replication depends on several services that run on the vSphere Replication virtual appliance.

Table 1. vSphere Replication Services
Service Name Startup Type Description
hms Automatic for the vSphere Replication appliance. Disabled for the vSphere Replication add-on appliance. vSphere Replication Management Service
hbrsrv Automatic vSphere Replication Service
sshd Disabled by default. SSH Service
ntp Automatic Time service for syncing-up with Internet Time Server through Network Time Protocol.
Note: After you install or upgrade a vSphere Replication virtual appliance, you must synchronize the appliance with a time server.
vaos Automatic Guest OS initialization that drives network settings, host name settings, ssh keys creation, EULA acceptance, boot scripts execution, and VAMI initialization.

Communication Ports

vSphere Replication uses several communication ports and protocols.

The vSphere Replication appliance requires certain ports to be open.
Note: vSphere Replication servers must have NFC traffic access to target ESXi hosts.
Table 2. Ports Used by the vSphere Replication Appliance
Source Target Port Protocol Description
vSphere Replication appliance Local and remote vCenter Server 80 TCP All management traffic to the vSphere Replication appliance goes to port 80 on the vCenter Server proxy system.
vSphere Replication server in the vSphere Replication appliance ESXi host (intra-site) 80 HTTP Used to establish the connection before initial replication starts.
vSphere Replication appliance Local and remote vCenter Server 443 TCP All management traffic to the vSphere Replication appliance.
vSphere Replication server in the vSphere Replication appliance ESXi host (intra-site only) on secondary site 902 TCP and UDP Used by vSphere Replication servers to send replication traffic to the destination ESXi hosts.
Browser vSphere Replication appliance 5480 HTTPS vSphere Replication virtual appliance management interface (VAMI) Web UI.
vCenter Server proxy vSphere Replication appliance 8043 SOAP Intra-site communication from the vCenter Server proxy to the vSphere Replication appliance .
vSphere Replication appliance vSphere Replication server 8123 SOAP Intra-site management traffic from the vSphere Replication Management server to additional vSphere Replication server in the environment.
ESXi host on the source site vSphere Replication server at the target site 31031 TCP Initial and outgoing replication traffic from the ESXi host at the source site to the vSphere Replication appliance or vSphere Replication server at the target site for replication traffic without network encryption.
ESXi host on the source site vSphere Replication server at the target site 32032 TCP Initial and outgoing replication traffic from the ESXi host at the source site to the vSphere Replication appliance or vSphere Replication server at the target site for replication traffic with network encryption.

If you deploy additional vSphere Replication servers, you must open the ports that vSphere Replication requires on those servers.

Table 3. Ports Used by the vSphere Replication Server
Source Target Port Protocol Description
vSphere Replication server in the vSphere Replication appliance ESXi host (intra-site only) on secondary site 902 TCP and UDP Traffic between the vSphere Replication server and the ESXi hosts on the same site. Specifically the traffic of the NFC service to the destination ESXi servers.
Browser vSphere Replication server 5480 HTTPS Administrator's Web browser.
vSphere Replication Management server vSphere Replication server 8123 SOAP Intra-site management traffic from the vSphere Replication appliance or vSphere Replication Management server to the vSphere Replication servers.
ESXi host at the source site vSphere Replication server 31031 TCP Initial and forward replication traffic from the ESXi host at the source site to the vSphere Replication appliance or vSphere Replication server at the target site.
ESXi host on the source site vSphere Replication server at the target site 32032 TCP Initial and forward replication traffic with network encryption from the ESXi host at the source site to the vSphere Replication appliance or vSphere Replication server at the target site.

When you create a connection to the cloud, the vCloud Tunneling Agent in the vSphere Replication appliance creates a tunnel to secure the transfer of replication data to your cloud organization.

Table 4. Ports Required for Cloud Replications
Source Destination Port Protocol Description
The ESXi host at the source site The vCenter Server at the source site 80 TCP The vCenter Server reverse proxy forwards VIB (vCloud Availability firewall rules) download request to the vSphere Replication appliance.
The vSphere Replication appliance at the source site vCloud API 443 REST over HTTPS vSphere Replication appliance connects to this port to send replication data to a cloud organization.
The ESXi host at the source site The vSphere Replication appliance at the source site 10000–10010 TCP The vCloud Tunneling Agent opens one of these ports on the vSphere Replication appliance. ESXi hosts connect to that port to send replication data to a cloud organization.

Open Source and Third-Party Components

For the complete text of the open-source licenses, a list of all open-source and third-party components, and the open-source code used in vSphere Replication, you can go to http://www.vmware.com/download/open_source.html and see the VMware vSphere Replication Open Source and Licenses section under the VMware vSphere Open Source link. If a certain open-source license requires it, the vSphere Replication Open Source Disclosure Package (ODP) contains text files with instructions how to build and replace the software libraries.