Correctly configuring firewalls for data collection
search cancel

Correctly configuring firewalls for data collection

book

Article ID: 341428

calendar_today

Updated On:

Products

VMware

Issue/Introduction

The Data Collection Guide lists the following ports required to be open on the firewall on the network: 22, 135, 137, 138, 139, 445.
 
The ports are open, however connectivity still fails.


Environment

VMware Capacity Planner 2.5.x
VMware Capacity Planner 2.1.x
VMware Capacity Planner 2.6.x

Resolution

The ports listed are "trigger" ports. These are used to get the attention of the desired service on the target. The services actually respond on an ephemeral port when initial communication is established at the trigger ports.
 
The firewall needs to be aware of the "conversation" between the host and client. A stateful firewall allows ports required as part of a "conversation" in relation to an initially allowed set of static ports.
 
If you are having a connectivity issue, ensure the firewall is not configured to block traffic in the ephemeral port range.