Product SiteDocumentation Site

2.2.5.2. Virtualization Host Firewall Requirements

Both Red Hat Enterprise Linux hosts and Red Hat Enterprise Virtualization Hypervisors require that a number of ports be opened to allow network traffic through the system's firewall. In the case of the Red Hat Enterprise Virtualization Hypervisor these firewall rules are configured automatically. For Red Hat Enterprise Linux hosts however it is necessary to manually configure the firewall.
Table 2.2. Virtualization Host Firewall Requirements
Port(s) Protocol Source Destination Purpose
22 TCP
  • Red Hat Enterprise Virtualization Manager
  • Red Hat Enterprise Virtualization Hypervisor(s)
  • Red Hat Enterprise Linux host(s)
Secure Shell (SSH) access.
5634 - 6166 TCP
  • Administration Portal clients
  • User Portal clients
  • Red Hat Enterprise Virtualization Hypervisor(s)
  • Red Hat Enterprise Linux host(s)
Remote guest console access via VNC and Spice. These ports must be open to facilitate client access to virtual machines.
16514 TCP
  • Red Hat Enterprise Virtualization Hypervisor(s)
  • Red Hat Enterprise Linux Host(s)
  • Red Hat Enterprise Virtualization Hypervisor(s)
  • Red Hat Enterprise Linux Host(s)
Virtual machine migration using libvirt.
49152 - 49216 TCP
  • Red Hat Enterprise Linux Hypervisor(s)
  • Red Hat Enterprise Linux Host(s)
  • Red Hat Enterprise Linux Hypervisor(s)
  • Red Hat Enterprise Linux Host(s)
Virtual machine migration and fencing using VDSM. These ports must be open facilitate both automated and manually initiated migration of virtual machines.
54321 TCP
  • Red Hat Enterprise Virtualization Manager
  • Red Hat Enterprise Virtualization Hypervisor(s)
  • Red Hat Enterprise Linux host(s)
  • Red Hat Enterprise Virtualization Hypervisor(s)
  • Red Hat Enterprise Linux host(s)
VDSM communications with the Manager and other virtualization hosts.