What ports do VSphere Vclient use?

I'd like to remotely connect to an ESX box on a remote network.  I'm fine with how to configure the Netscreen to open up ports to allow inbound/outbound traffic but don't know what ports to open.  I'm using Vsphere client 4.0.0 Build 208111 and the box is ESX 4.0.0 Build 208167.

Found this link from VMWare's site but is sort of confusing as to what I really need:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

coolsport00Connect With a Mentor Commented:
Ports 80 and 443. If you need to change them, see:

BTW "nlandas"...the poster looked at that link, but was confused as to the specific ports the Client uses. :)

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

HossyConnect With a Mentor Commented:
I found some good documentation for you:

Chapter 12, page 145-154 "Securing the Network with Firewalls"
In particular, there is a nice table on 153-154 listing all ports.
Deepak KosarajuConnect With a Mentor DevOps EngineerCommented:
vSphere ESX Connections:
a) Web access uses port 80 and 443 via a supported Web Browser; to connect, you have to make sure the "vmware-webAccess" service is started on the host (service vmware-webAccess status; service vmware-webAccess start); The vSphere Client, vSphere Web Access Client, and SDK use port 443 to send
data to vCenter Server managed hosts. Also, the vSphere Client, vSphere Web Access Client, and SDK, when connected directly to an ESX host, use this port to support any management functions related to the server and its virtual machines
b) vSphere Client uses port 902/903 to connect directly to ESX/i host for VM console access as well as data transfer
c) Putty uses SSH, which uses port 22 to connect directly to the ESX host
d) vSphere Client uses port 443 to connect to vCenter and port 903 to connect to VM Console after the connection to vCenter through port 443; Port 902 connects vCenter Server to the host through the VMware
Authorization Daemon (vmware-authd)

When a vSphere Client or vCenter Server user connects to a ESX host, a connection is established with the
VMware Host Agent process. The process uses the user names and passwords for authentication. ESX uses the Pluggable Authentication Modules (PAM) structure for authentication when users access the ESX
host using the vSphere Client, vSphere Web Access, or the service console. The PAM configuration for VMware services is located in /etc/pam.d/vmware-authd, which stores paths to authentication modules. The reverse proxy in the VMware Host Agent (vmware-hostd) process listens on ports 80 and 443. vSphere
Client or vCenter Server users connect to the host agent through these ports. The vmware-hostd process receives the user name and password from the client and forwards them to the PAM module to perform the

The vpxuser permission is used for vCenter Server when managing activities for the host. The vpxuser is
created when an ESX host is attached to vCenter Server. vCenter Server has Administrator privileges on the host that it manages. For example, vCenter Server can move virtual machines to and from hosts and perform configuration changes needed to support virtual machines. The vCenter Server administrator can perform most of the same tasks on the host as the root user and also schedule tasks, work with templates, and so forth. However, the vCenter Server administrator cannot directly create, delete, or edit users and groups for ESX hosts. These tasks can only be performed by a user with Administrator permissions directly on each ESX host.

Courtesy: Of one the experts in EE has posted the above and I saved it for my future reference cannot recollect the post id#
coolsport00Connect With a Mentor Commented:
Umm...that would be me "kosarajudeepak" :)

Deepak KosarajuDevOps EngineerCommented:
There you go, that's the nice post that helps this user to clear all his questions. Thanks.
Deepak KosarajuDevOps EngineerCommented:
I always get confused between your post and bgoering posts so I don't want to hurt anyone so I said one of the expert in EE ;-) who ever has shared the above info in EE which is already in EE Inventory deserves the points from the user. So here coolsport00 deserve the points if the above solves the user question.
No harm, no foul...it's all good. :)

Thanks for the kudos though. :)

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.