Information Technology Reference
In-Depth Information
Firewall Requirements
The RHEV infrastructure requires that the network traffic on a number of ports be allowed
through the firewall. The following is the list of required ports that are to be opened on the
firewall across various RHEV components.
Virtualization manager firewall requirements
RHEV-M requires the following ports be opened in order to allow network traffic through
the system's firewall:
Port/Pro-
tocol
Source
Destination
Purpose
RHEV-M verifies the hypervisor's reachability via ICMP after the initial
host registration
The hypervisor host
RHEV-M
ICMP
The remote client
RHEV-M
22/TCP
To provide SSH access to the manager
Admin / User portal clients / Hyper-
visor host
80 and 443/
TCP
RHEV-M
To access the admin and user portal from remote clients
Note
If you plan to use the NFS ISO storage domain on the same box as the running RHEV-M
in order to store your ISO library to create virtual machines, please open TCP port 2049
for NFSv4.
Virtualization host firewall requirements
The Red Hat Enterprise Virtualization Hosts require the following ports be opened in or-
der to allow the network traffic through the system's firewall:
Source
Destination
Port/Protocol
Purpose
Hypervisor
Hosts
RHEV-M
22
To secure shell access
Hypervisor
Hosts
Admin /User portal clients
From 5900 to 6411/TCP
Used for Spice/VNC console access
Search WWH ::
Custom Search