8/10/2019 HorizonView-ReferencePorts-v1

1/5

Network Port Diagram - Horizon View -Reference Sheet

Updated October 2013

Source: VMware KB 2061913

8/10/2019 HorizonView-ReferencePorts-v1

2/5

Version: 1.0

Network Port Diagram VMware Horizon View

Source: VMware KB 2061913

Naming Convention Example

902 / TCP,UDP (59)

Port # Protocol Ref. #

Legend

Unidirectional Communication

Bi-directional Communication

Horizon View Client

Opened Ports

80 / HTTP (13)

443 / HTTPS (14, 15)

4172 / PCoIP (16, 20, 21, 22)

3389 / RDP (17)

32111 / USB Redirection (19)

Horizon ViewClient withLocal Mode

E X T E R N A L

FIREWALL

FIREWALL

I N

T E R N A L

D M Z

Horizon View Security Server

Opened Ports

443 / HTTPS (14)

80 / HTTP (13)

4172 / PCoIP (2)

500 / IPSec (3)

4500 / NAT-T ISAKMP (6)

8 0 /

T C P ( 1 3 )

4 4 3 / T C P ( 1 4 )

4 1 7 2

/ UD

P , T C P ( 2 2

, 1 6 )

8 0 /

T C P ( 1 3 )

4 4 3 / T C P ( 1 4 )

View Agent 5.2 or Later

Opened Ports

4172 / PCoIP (10, 11, 12, 20, 21, 25, 29)

3389 / RDP (7, 17, 28)

9427 / MMR (8, 18, 30)

32111 / USB Redirection (9, 19, 31)

HTML BlastClient

HTML BlastClient

TransferServer

Horizon ViewClient

8 4 4 3 / T C P ( 4 5 )

4 4 3 / T

C P ( 1 5 )

8 4 4 3 / T C P ( 4 5 )

4 4 3 / T C P ( 1 5 )

4 1 7 2

/ UD

P , T C P ( 1 , 1 0 )

9 4 2

7 / T C P ( 8 )

3 3 8 9 / T C P ( 7 )

3 2

1 1 1 / T C

P ( 9 )

2 2

4 4 3 / T C P ( 4 4 )

4172 / UDP, TCP (11)

3 3 8 9 / T C P ( 1 7 )

9427 / TCP (18)

3 2

1 1 1 / T C P ( 1 9 )

4 1 7 2

/ UD

P , T C P ( 1 6 ,2 2

)

9 4 2

7 / T C P ( 1 8 )

4 4 3 / T C P ( 1 4 )

8 0 /

T C P ( 1 3 )

22443 / TCP (44)

4 4 3 / T C P ( 3 5 )

8

0 / T C P ( 3 4 )

4 0 0 1 / T C P ( 4 1 )

8 0 0 9 / T C P ( 5 )

4 0 0 1 / T C P ( 4 )

4 5 0 0 /

UD

P ( 6 )

5 0 0 /

UD

P ( 3 )

8/10/2019 HorizonView-ReferencePorts-v1

3/5

8/10/2019 HorizonView-ReferencePorts-v1

4/5

Ref # Source Port Target Port Protocol Description

16 View Client * View ConnectionServer or securityserver

4172 TCP PCoIP (HTTPS) if PCoIP Secure Gateway is used.

17 View Client * View Agent 3389 TCP Microsoft RDP traffic to View desktops if direct connections areused instead of tunnel connections.

18 View Client * View Agent 9427 TCP Wyse MMR redirection if direct connections are used instead of

tunnel connections.19 View Client * View Agent 32111 TCP USB redirection if direct connections are used instead of tunnel

connections.

20 View Client * View Agent 4172 TCP PCoIP (HTTPS) if PCoIP Secure Gateway is not used.

21 View Client * View Agent 4172 UDP PCoIP, if PCoIP Secure Gateway is not used.

22 View Client * View ConnectionServer or securityserver

4172 UDP PCoIP (not SALSA20) if PCoIP Secure Gateway is used.

23 View ConnectionServer

* vCenter Server orView Composer

80 TCP SOAP messages if SSL is disabled for access to vCenter Servers orView Composer.

24 View ConnectionServer

* vCenter Server orView Composer

443 TCP SOAP messages if SSL is enabled for access to vCenter Servers orView Composer.

25 View ConnectionServer

* View Agent 4172 UDP PCoIP (not SALSA20) if PCoIP Secure Gateway via the ViewConnection Server is used.

26 View ConnectionServer

4172 View Client * UDP PCoIP (not SALSA20) if PCoIP Secure Gateway via the ViewConnection Server is used.

27 View ConnectionServer

* View ConnectionServer

4100 TCP JMS inter-router traffic.

28 View ConnectionServer

* View Agent 3389 TCP Microsoft RDP traffic to View desktops if tunnel connections viathe View Connection Server are used.

29 View ConnectionServer

* View Agent 4172 TCP PCoIP (HTTPS) if PCoIP Secure Gateway via the View ConnectionServer is used.

30 View ConnectionServer

* View Agent 9427 TCP Wyse MMR redirection if tunnel connections via the ViewConnection Server are used.

31 View ConnectionServer

* View Agent 32111 TCP USB redirection if tunnel connections via the View ConnectionServer are used.

32 View Agent * View ConnectionServer instances

4001 TCP JMS traffic.

33 View Composerservice

* ESXi host 902 TCP Used when View Composer customizes linked-clone disks,including View Composer internal disks and, if they are specied,persistent disks and system disposable disks.

34 Security server * View Transfer Server 80 TCP Local desktop check-out, check-in, and replication if tunnelconnections are used and SSL is disabled for local modeoperations.

8/10/2019 HorizonView-ReferencePorts-v1

5/5

Ref # Source Port Target Port Protocol Description

35 Security server * View Transfer Server 443 TCP Local desktop check-out, check-in, and replication if tunnelconnections are used and SSL is enabled for local modeoperations.

36 View Client withLocal Mode

* View Transfer Server 80 TCP Local desktop check-out, check-in, and replication if directconnections are used instead of tunnel connections, and SSL isdisabled for local mode operations.

37 View Client withLocal Mode

* View Transfer Server 443 TCP Local desktop check-out, check-in, and replication if directconnections are used instead of tunnel connections, and SSL isenabled for local mode operations.

38 View ConnectionServer

* ESXi host 902 TCP Local desktop check-out, check-in, and replication.

39 View ConnectionServer

* View Transfer Server 80 TCP Local desktop check-out, check-in, and replication if tunnelconnections via the View Connection Server are used and SSL isdisabled for local mode operations.

40 View ConnectionServer

* View Transfer Server 443 TCP Local desktop check-out, check-in, and replication if tunnelconnections via the View Connection Server are used and SSL isenabled for local mode operations.

41 View Transfer Server * View ConnectionServer

4001 TCP JMS traffic to support local mode.

42 View Transfer Server * ESXi host 902 TCP Publishing View Composer packages for local mode.

43 View Transfer Server * Server that hoststhe Transfer Serverrepository networkshare

445 UDP Conguring and publishing View Composer packages to theTransfer Server repository network share.

44 Blast Client 22443 Connection Server/ Security Server

* TCP If you use VMware Horizon View HTML Access connect to Viewdesktops on HTTPS port 22443 to communicate with the Blastagent.

45 Blast Client * Connection Server/ Security Server

8443 TCP If you use VMware Horizon View HTML Access, the external Webclient connects to a security server or connection server on HTTPSport 8443 to communicate with View desktops.

46 Connection Server * Active Directory/ Connection Server

389 TCP This is used for replication with the Active Directory and/or otherConnection Servers.

47 Source ConnectionServer

* View Agent 22443 TCP If you use VMware Horizon View HTML Access, connection serv-ers and security servers connect to View desktops on HTTPS port22443 to communicate with the Blast agent.