horizonview-referenceports-v1
TRANSCRIPT
-
8/10/2019 HorizonView-ReferencePorts-v1
1/5
Network Port Diagram - Horizon View -Reference Sheet
Updated October 2013
Source: VMware KB 2061913
-
8/10/2019 HorizonView-ReferencePorts-v1
2/5
Version: 1.0
Network Port Diagram VMware Horizon View
Source: VMware KB 2061913
Naming Convention Example
902 / TCP,UDP (59)
Port # Protocol Ref. #
Legend
Unidirectional Communication
Bi-directional Communication
Horizon View Client
Opened Ports
80 / HTTP (13)
443 / HTTPS (14, 15)
4172 / PCoIP (16, 20, 21, 22)
3389 / RDP (17)
32111 / USB Redirection (19)
Horizon ViewClient withLocal Mode
E X T E R N A L
FIREWALL
FIREWALL
I N
T E R N A L
D M Z
Horizon View Security Server
Opened Ports
443 / HTTPS (14)
80 / HTTP (13)
4172 / PCoIP (2)
500 / IPSec (3)
4500 / NAT-T ISAKMP (6)
8 0 /
T C P ( 1 3 )
4 4 3 / T C P ( 1 4 )
4 1 7 2
/ UD
P , T C P ( 2 2
, 1 6 )
8 0 /
T C P ( 1 3 )
4 4 3 / T C P ( 1 4 )
View Agent 5.2 or Later
Opened Ports
4172 / PCoIP (10, 11, 12, 20, 21, 25, 29)
3389 / RDP (7, 17, 28)
9427 / MMR (8, 18, 30)
32111 / USB Redirection (9, 19, 31)
HTML BlastClient
HTML BlastClient
TransferServer
Horizon ViewClient
8 4 4 3 / T C P ( 4 5 )
4 4 3 / T
C P ( 1 5 )
8 4 4 3 / T C P ( 4 5 )
4 4 3 / T C P ( 1 5 )
4 1 7 2
/ UD
P , T C P ( 1 , 1 0 )
9 4 2
7 / T C P ( 8 )
3 3 8 9 / T C P ( 7 )
3 2
1 1 1 / T C
P ( 9 )
2 2
4 4 3 / T C P ( 4 4 )
4172 / UDP, TCP (11)
3 3 8 9 / T C P ( 1 7 )
9427 / TCP (18)
3 2
1 1 1 / T C P ( 1 9 )
4 1 7 2
/ UD
P , T C P ( 1 6 ,2 2
)
9 4 2
7 / T C P ( 1 8 )
4 4 3 / T C P ( 1 4 )
8 0 /
T C P ( 1 3 )
22443 / TCP (44)
4 4 3 / T C P ( 3 5 )
8
0 / T C P ( 3 4 )
4 0 0 1 / T C P ( 4 1 )
8 0 0 9 / T C P ( 5 )
4 0 0 1 / T C P ( 4 )
4 5 0 0 /
UD
P ( 6 )
5 0 0 /
UD
P ( 3 )
-
8/10/2019 HorizonView-ReferencePorts-v1
3/5
-
8/10/2019 HorizonView-ReferencePorts-v1
4/5
Ref # Source Port Target Port Protocol Description
16 View Client * View ConnectionServer or securityserver
4172 TCP PCoIP (HTTPS) if PCoIP Secure Gateway is used.
17 View Client * View Agent 3389 TCP Microsoft RDP traffic to View desktops if direct connections areused instead of tunnel connections.
18 View Client * View Agent 9427 TCP Wyse MMR redirection if direct connections are used instead of
tunnel connections.19 View Client * View Agent 32111 TCP USB redirection if direct connections are used instead of tunnel
connections.
20 View Client * View Agent 4172 TCP PCoIP (HTTPS) if PCoIP Secure Gateway is not used.
21 View Client * View Agent 4172 UDP PCoIP, if PCoIP Secure Gateway is not used.
22 View Client * View ConnectionServer or securityserver
4172 UDP PCoIP (not SALSA20) if PCoIP Secure Gateway is used.
23 View ConnectionServer
* vCenter Server orView Composer
80 TCP SOAP messages if SSL is disabled for access to vCenter Servers orView Composer.
24 View ConnectionServer
* vCenter Server orView Composer
443 TCP SOAP messages if SSL is enabled for access to vCenter Servers orView Composer.
25 View ConnectionServer
* View Agent 4172 UDP PCoIP (not SALSA20) if PCoIP Secure Gateway via the ViewConnection Server is used.
26 View ConnectionServer
4172 View Client * UDP PCoIP (not SALSA20) if PCoIP Secure Gateway via the ViewConnection Server is used.
27 View ConnectionServer
* View ConnectionServer
4100 TCP JMS inter-router traffic.
28 View ConnectionServer
* View Agent 3389 TCP Microsoft RDP traffic to View desktops if tunnel connections viathe View Connection Server are used.
29 View ConnectionServer
* View Agent 4172 TCP PCoIP (HTTPS) if PCoIP Secure Gateway via the View ConnectionServer is used.
30 View ConnectionServer
* View Agent 9427 TCP Wyse MMR redirection if tunnel connections via the ViewConnection Server are used.
31 View ConnectionServer
* View Agent 32111 TCP USB redirection if tunnel connections via the View ConnectionServer are used.
32 View Agent * View ConnectionServer instances
4001 TCP JMS traffic.
33 View Composerservice
* ESXi host 902 TCP Used when View Composer customizes linked-clone disks,including View Composer internal disks and, if they are specied,persistent disks and system disposable disks.
34 Security server * View Transfer Server 80 TCP Local desktop check-out, check-in, and replication if tunnelconnections are used and SSL is disabled for local modeoperations.
-
8/10/2019 HorizonView-ReferencePorts-v1
5/5
Ref # Source Port Target Port Protocol Description
35 Security server * View Transfer Server 443 TCP Local desktop check-out, check-in, and replication if tunnelconnections are used and SSL is enabled for local modeoperations.
36 View Client withLocal Mode
* View Transfer Server 80 TCP Local desktop check-out, check-in, and replication if directconnections are used instead of tunnel connections, and SSL isdisabled for local mode operations.
37 View Client withLocal Mode
* View Transfer Server 443 TCP Local desktop check-out, check-in, and replication if directconnections are used instead of tunnel connections, and SSL isenabled for local mode operations.
38 View ConnectionServer
* ESXi host 902 TCP Local desktop check-out, check-in, and replication.
39 View ConnectionServer
* View Transfer Server 80 TCP Local desktop check-out, check-in, and replication if tunnelconnections via the View Connection Server are used and SSL isdisabled for local mode operations.
40 View ConnectionServer
* View Transfer Server 443 TCP Local desktop check-out, check-in, and replication if tunnelconnections via the View Connection Server are used and SSL isenabled for local mode operations.
41 View Transfer Server * View ConnectionServer
4001 TCP JMS traffic to support local mode.
42 View Transfer Server * ESXi host 902 TCP Publishing View Composer packages for local mode.
43 View Transfer Server * Server that hoststhe Transfer Serverrepository networkshare
445 UDP Conguring and publishing View Composer packages to theTransfer Server repository network share.
44 Blast Client 22443 Connection Server/ Security Server
* TCP If you use VMware Horizon View HTML Access connect to Viewdesktops on HTTPS port 22443 to communicate with the Blastagent.
45 Blast Client * Connection Server/ Security Server
8443 TCP If you use VMware Horizon View HTML Access, the external Webclient connects to a security server or connection server on HTTPSport 8443 to communicate with View desktops.
46 Connection Server * Active Directory/ Connection Server
389 TCP This is used for replication with the Active Directory and/or otherConnection Servers.
47 Source ConnectionServer
* View Agent 22443 TCP If you use VMware Horizon View HTML Access, connection serv-ers and security servers connect to View desktops on HTTPS port22443 to communicate with the Blast agent.