Firewall ports for Nexus 1000v

hi all,
There is firewall between nexus 1000v and vcentre and ESX 4.1i hosts.
Could u pls advise which TCP/UDP ports to be opened for communication among Nexus1000v, vcentre and ESX hosts?
Thank you very much!
Best Regards,

David,
Between your VSM & VC you'll need TCP ports 80 & 443 open
http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3/troubleshooting/configuration/guide/n1000v_trouble_5modules.html
Between your VEM & VSM you'll need port this should be layer 2 so no ports need to be open.
If you're using Layer 3 mode then enusre you have UDP 4785 open.
http://www.ciscosystemsverified.biz/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3/system_management/configuration/guide/n1000v_system_3domain.pdf
Regards,
Robert

Similar Messages

  • Vmware Tools for Nexus 1000v, VNMC and VSG

    Hi everyone, a customer is asking me about how to install the vmware tools in the virtual machines of N1Kv, VSG and VNMC.
    Someone knows the procedure, or if thats posiible or not.

    @Robert
    Wanted to know / understand what hardware version would be compatible for Nexus 1000V ? Is there any dependency for hardware version ?
    Regards,
    Amit Vyas

  • Firewall Port for DHCP 2012 R2 Failover (Load Sharing mode)

    Hi Everyone,
    I was wondering if anyone can help me with finding a document for required Firewall Ports for DHCP 2012 R2 Failover (Load Sharing mode)
    or just confirm if this is correct or not ?
    TCP 647 for
    DHCP failover messages between DHCP servers
    TCP/UDP 67 and 68 initiate communication between the client and server
    I am not sure if there is anything else
    thanks in advance
    Reza Negarestani

    it was for a technical design document and I put this table for Firewall requirements what do you think ?
    Direction
    Port(s)
    Bidirectional
    TCP 647
    Bidirectional
    TCP 2535
    UDP 2535
    Bidirectional
    TCP 67
    TCP 68
    UDP 67
    UDP 68
    Reza Negarestani

  • Firewall ports for B2B ( Telepresence with CUBE)

    Could any body let me know what firewall port need to be open for B2B set up telepresence with CUBE on SIP trunk.
    Please suggest
    Regards
    Gautrav

    Hi Harold,
    Please check the link for all SAP port related information
    http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/4e515a43-0e01-0010-2da1-9bcc452c280b?QuickLink=index&…
    Thanks and regards,
    Nikhil

  • Firewall ports for Zone Sharing and Subscription?

    Hi again!
    What firewall ports need to be open for Zone Sharing and Subscription?...

    Hello,
    we updated from 11.3.1 to 11.3.2
    Now i can not run the command chkconfig -a novell-proxydhcp to set the proxydhcp to autorun because i get...

  • Firewall Ports for Web Services

    Hi Experts,
    Can you please list what are the firewall ports to be opened to call a ECC 6.0 system web service from a .Net application, assuming both systems are separated by a firewall
    Thanks in advance
    Regards,
    Krishna

    Hello ,
    Please as far as i know you have to open 4 ports in the ecc system.
    They are
    Message server port =  36<instance number>
    ITS = 80<Instance number>
    Gateway = 33<instance number> -- make sure service entries are maintained (sapgw)
    If you maintain Central SLD - then the specific port needs to be opened. - 5(instance number)00.
    I hope these ports needs to be opened and this is enough,  I believe.
    Vijay.

  • Firewall ports for shared computers (bonjour) to appear in Finder?

    This is the setup:
    my Lion server is in a different subnet (DMZ) then the workstations (LAN) through the means of a third-party firewall
    the Lion server has File Sharing enabled
    the workstations can access the share points by connecting to the server (connections from LAN to DMZ are permitted)
    The problem:
    the Lion server wont's show up in the workstation's finder (shared computers AKA bonjour)
    The question:
    what ports need to be opened from DMZ to LAN in order for the Lion server to announce itself to the clients?

    A work around that may work for you (does for me) is simply to keep the errant PC from sleeping during the period that you may want to connect to it. That's right. Torture is by depriving it of sleep. It's a PC; it deserves it, right?

  • Firewall Ports for ERP

    Hi Friends,
    I just installed ERP6 with EHP7 on SuSE Linux Enterprise Server 11 SP2(SLES), but I found that I could not connect the ERP from SAPGUI unless I disable the firewall of SLES. I have opened tcp ports 3200 3300 3600 3601 on the firewall, could you please tell me if any ports needed ?
    Thanks & Regards
    Harold

    Hi Harold,
    Please check the link for all SAP port related information
    http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/4e515a43-0e01-0010-2da1-9bcc452c280b?QuickLink=index&…
    Thanks and regards,
    Nikhil

  • Firewall ports for appv client

    native Appv infrastructure. Apps are published using UNC.
    what ports should be open for the clients sitting behind the firewall?
    --- When you hit a wrong note its the next note that makes it good or bad. --- Miles Davis

    No, the client does not communicate with the App-V Management Server.
    Please remember to click "Mark as Answer" or "Vote as Helpful" on the post that answers your question (or click "Unmark as Answer" if a marked post does not actually
    answer your question). This can be beneficial to other community members reading the thread.
    This forum post is my own opinion and does not necessarily reflect the opinion or view of my employer, Microsoft, its employees, or other MVPs.
    Twitter:
    @stealthpuppy | Blog:
    stealthpuppy.com |
    The Definitive Guide to Delivering Microsoft Office with App-V

  • ZAC Firewall ports for getting runtimes?

    Hi guys,
    I am trying to create some simple ZAC applications for exemple IE8. I'm adding the Adobe 9.0 and .NET3.5 Runtimes to the app and I'm getting a 401 error. I know that there's a lot of firewall restriction where I am and I wanted to know if there's some ports that needs to be opened for this to work?
    My next step is to test the same thing on a different network to see if this is an installation problem. I am using 8.0.3 right now on XP.
    Thanks!

    sebastien,
    It appears that in the past few days you have not received a response to your
    posting. That concerns us, and has triggered this automated reply.
    Has your problem been resolved? If not, you might try one of the following options:
    - Visit http://support.novell.com and search the knowledgebase and/or check all
    the other self support options and support programs available.
    - You could also try posting your message again. Make sure it is posted in the
    correct newsgroup. (http://forums.novell.com)
    Be sure to read the forum FAQ about what to expect in the way of responses:
    http://forums.novell.com/faq.php
    If this is a reply to a duplicate posting, please ignore and accept our apologies
    and rest assured we will issue a stern reprimand to our posting bot.
    Good luck!
    Your Novell Product Support Forums Team
    http://forums.novell.com/

  • Firewall ports for WCS to talk to controllers

    I have a WCS on one side of a firewall, and a controller on the other side. What ports and protocols would I need to open in the firewall to allow the WCS to manage the controller? All I can find is info on what ports to open for a client to access the WCS. Thanks for any help!!

    When there is a conflicting port in use, WCS fails to get started with just the error message "Failed to start WCS Server." The WCS requires these ports to be available in the machine:
       *Checking for Port 1299 availability... OK
           *Checking for Port 80 availability... OK
           *Checking for Port 443 availability... OK
           *Checking for Port 8009 availability... OK
           *Checking for Port 8456 availability... OK
           *Checking for Port 8457 availability... OK
           *Checking for Port 8005 availability... OK
           *Checking for UDP Port 69 availability... OK
           *Checking for Port 21 availability... OK
    Make sure that you do not run other applications on those ports, such as web server (80), TFTP Server (69), or FTP server (21). On a WCS installed on linux, go to WCS/webnms/logs/wcs-0-0.log and look for the conflicting ports. On Windows based WCS, you can run netstat -a from a DOS window to see the listening ports that are used. If this is the case, shut them down and try to restart WCS.

  • Opening Firewall Ports for BitTorrent

    I just got a shiny new Mac and installed the regular no-frills BitTorrent client. It downloads, but never at more than 1 KB/s. So I Googled around a bit and found instructions on how to open ports 6681-6999 on the firewall. I followed the instructions, and I do believe those ports are open, at least according to the System Preferences--rebooted and everything. But it has no effect on BitTorrent--it still says "Online, maybe firewalled" in the lower right corner and won't go above 1 KB/s.
    I have an ethernet router, but it always worked fine with BitTorrent on my Windows computer, so I sincerely hope that is not the problem. (The only reason it's there is to give the long ethernet cable something to plug into, as the apartment came with a ridiculously short ethernet cable sticking out of the wall.)
    Does anyone know what I can do to get BitTorrent working?
    Thanks

    The first 3 numbers were the same as the router and the last number was unique. When I let it set its own IP address, it is 3, and I figure the other computer I have, which is not currently on or plugged in to anything, is probably 2.
    The changes I made in the router settings don't seem to have stuck. A friend recommended I use Azureus instead of the basic BitTorrent client, and it keeps telling me "UPnP: Lost connection to service WANIPConnection on UPnP device '192.168.11.1'" and ditto WANPPPConnection. Eventually, though, it stopped complaining about being firewalled. So far it hasn't picked up much speed, but I'm hoping that's just the usual phenomenon of my upload speed being slow as I have nothing to upload yet.
    Also, when I later tried to log in to the router without changing the IP address, it worked. (So the problem where it wouldn't let me log in unless I used the same IP address as before solved itself.)
    I think my problem may be solved, but I'm gonna give it a while to make sure.

  • Ports for Firewall rules

    Hi,
    can anybody point out which ports are to be opened on firewalls ?
    Im am using a SunMC 4.0 server/console/agent on a v240 and need to monitor systems located behind firewalls.
    Also NATing is involved.
    I would like to know which ports I have to open from agents to server (and vice versa) and from server to java-console on a PC (and vice versa)

    Hi,
    You need to open firewall ports from 161-168. Also take a look at /var/opt/SUNWsymon/cfg/domain-config.x and make sure to open any ports within the "snmpPort" line of that file.
    Take a look at this post on how to configure firewall ports for console to server communication: [http://forums.halcyoninc.com/showthread.php?t=7]
    If you still have problems with adding the agents, you can take a look at the following post on troubleshooting agent icon creation: [http://forums.halcyoninc.com/showthread.php?t=92]
    If you are using agents in NAT mode, it may not work very well as alarms would not show in the alarms tab. Please take a look at the following posts regarding this issue:
    [http://forums.halcyoninc.com/showthread.php?t=186]
    [http://forums.sun.com/thread.jspa?forumID=854&threadID=5363460]
    Pegah Garousi, Halcyon Monitoring Solutions
    [email protected]
    http://www.HalcyonInc.com

  • Nexus 1000v repo is not available

    Hi everyone.
    Cisco Yum repo for nexus 1000v is not available at the moment. I am wondering, is it Ok and Cisco finished it experiment with free Nexus1k or I need to contact someon (who?) to ask him to fix this problem.
    PS Link to the repo: https://cnsg-yum-server.cisco.com/yumrepo

    Let's set the record straight here - to avoid confusion.
    1. VEMs will continue to forward traffic in the event one or both VSM are unavailable - this requires the VEM to remain online and not reboot while both VSMs are offline. VSM communication is only required for config changes (and LACP negociation prior to 1.4)
    2.  If there is no VSM reachable, and a VEM is reboot, only then will the System VLANs go into a forwarding state.  All other non-system VLANs will remain down. This is to faciliate the Chicken & Egg theory of a VEM being able to initially communicate with a VSM to obtain its programming.
    The ONLY VLANs & vEth Profiles that should be set as system vlans are:
    1000v-Control
    1000v-Packet
    Service Console/VMkernel for Mgmt
    IP Storage (iSCSI or NFS)
    Everything else should not be defined as a system VLAN including VMotion - which is a common Mistake.
    **Remember that for a vEth port profile to behave like a system profile, it must be define on BOTH the vEth and Eth port profiles.  Two factor check.  This allows port profiles that maybe are not critical, yet share the same VLAN ID to behave differently.
    There are a total of 16 profiles that can include system VLANs.  If you exceed this, you can potentially run into issues with the Opaque data pushed from vCenter is truncated causing programming errors on your VEMs.  Adhering to the limitations above should never lead to this situation.
    Regards,
    Robert

  • Nexus 1000v: Control VLAN must be same VLAN as ESX hosts?

    Hello,
    I'm trying to install nexus 1000v and came across the below prerequisite.
    The below release notes for Nexus 1000v states
    VMware and Host Prerequisites
    The VSM VM control interface must be on the same Layer 2 VLAN as the ESX 4.0 host that it manages. If you configure Layer 3, then you do not have this restriction. In each case however, the two VSMs must run in the same IP subnet.
    What I'm trying to do is to create 2 VLANs - one for management and the other for control & Data (as per latest deployment guide, we can put control & data in the same vlan).
    However, I wanted to have all ESX host management same VLAN as the VSM management as well as the vCenter Management. Essentially, creating a management network.
    However, from the above "VMWare and Host Prerequisites", does this means I cannot do this?
    I need to have the ESX host management same VLAN as the control VLAN?
    This means that my ESX host will reside in a different VLAN than my management subnet?
    Thanks...

    Control vlan is a totally seperate VLAN then your System Console. The VLAN just needs to be available to the ESX host through the upstream physical switch and then make sure the VLAN is passed on the uplink port-profile that you assign the ESX host to.
    We only need an interface on the ESX host if you decide to use L3 control. In that instance you would create or use an existing VMK interface on the ESX host.

Maybe you are looking for

  • Photoshop and Illustrator sometimes hang when working together (CS 5.5)

    Hi all, I'm working with Adobe Creative Suite Design Premium 5.5 and sometimes, when I have Photoshop and Illustrator opened together, if I try to open something a little more complex (but not to heavy), one of the programs hang or freeze. This is a

  • 4:3 to 16:9 at this point?

    Hi! I am working with a video project in Final Cut Express. I imported 4:3 videos and 16:9 videos. Since I didn't preset the 16:9 format for the whole project, I still have 4:3 and 16:9 videos in the same timeline. Can you help me please? Can I still

  • Need help on nano 2 things

    i hear we can download games on to our ipods is this true? if so where can i get these? another is why is it that i charge my nano for 3 hrs like it tells me too but the battery goes down faster than when i frist used it? what the heck is up with tha

  • How can I get Adobe Shockplayer and Flashplayer to work?

    Yesterday I had a problem with a program that I installed.  My pc wouldn't open Windows any longer.  So I chose F8 > Last known configuration that worked.  That fixed the problem but Adobe Flashplayer and Shockwave Player stopped working.  I get a bl

  • HT1380 Attach Lightning to 30-pin Adapter on a universal dock

    Can I attach a Lightning to 30-pin Adapter to the 30 pin socket of my universal dock for listening to music and charging my iPhone 5?