When using JetStream DR to protect an AVS Cloud-Internal configuration, the following network communication ports must be enabled.
(Note: The source ports for the traffic flows from JetStream appliances are ephemeral. All listed ports are destination ports.)
AVS Local Traffic (Within the same AVS Private Cloud)
| Connection | Port | Comment |
|---|---|---|
| JetStream MSA to vCenter | TCP 443 | |
| JetStream MSA to vCenter | TCP 80 | |
| vCenter to JetStream MSA: | TCP 443 | |
| JetStream MSA to ESXi hosts (CIM Server) | TCP 5989 | |
| JetStream IO Filter Daemon listener (ESXi host) | TCP 32873 | Inbound, used as needed for troubleshooting only |
| JetStream IO Filter (ESXi hosts) to DRVA (DATA) | TCP 32877 | |
| JetStream MSA to JetStream DRVA (REST) | TCP 32878 | |
| JetStream MSA to JetStream RocVA (REST) | TCP 32878 | |
| JetStream RocVA to JetStream DRVA (DATA) | TCP 32877 | |
| JetStream RocVA to JetStream ReVM (iSCSI) | TCP 3260 |
AVS to Azure/Internet
| Connection | Port | Comment |
|---|---|---|
| JetStream MSA to Azure Storage Account | TCP 443 | |
| JetStream DRVA to Azure Storage Account | TCP 443 | |
| JetStream RocVA to Azure Storage Account | TCP 443 | |
| JetStream MSA to Azure Active Directory (login.microsoftonline.com) (OAuth 2.0) | TCP 443 | For storage account AAD authentication |
| JetStream DRVA to Azure Active Directory (login.microsoftonline.com) (OAuth 2.0) | TCP 443 | For storage account AAD authentication |
| JetStream RocVA to Azure Active Directory (login.microsoftonline.com) (OAuth 2.0) | TCP 443 | For storage account AAD authentication |
| JetStream MSA to JetStream Azure metering website (jsdr-mms.azurewebsites.net) | TCP 443 | |
| JetStream MSA, DRVA, and DNS | TCP/UDP 53 |