Cloud failover appliance (CFA) is designed to function behind your firewall. To ensure its proper operation, the following ports should be open.

Between CFA and Internet

Port No. TCP/UDP Direction Purpose
122 TCP CFA to Internet Technical support tunnel
443 TCP CFA to Internet Registration, licensing, software updates, reporting
2300 TCP CFA to Internet Replication

Between CFA and protected machine

In Windows, these ports open automatically during the Backup Agent installation.

Port No. TCP/UDP Direction Purpose
9101, 9102, 9103, 9104, 9105 TCP CFA to a client machine Basic CFA communication
9102 UDP Client machine to CFA CFA auto-discovery
139, 445 TCP Client machine to CFA DR image backups (Samba ports)
135, 137, 138 UDP Client machine to CFA DR image backups (Samba ports)

In a Unix-like operating system, you also have to open the following ports:

Port No. TCP/UDP Direction Purpose
22 TCP CFA to client machine SSH-based management
873 TCP CFA to client machine rsync daemon port

Between CFA and VMware vCenter/ESXi

Port No. TCP/UDP Direction Purpose
443, 902 TCP CFA to VMware vCenter / ESXi host VMware VM backups

Between CFA and admin machine

Port No. TCP/UDP Direction Purpose
80, 443 TCP Admin machine to CFA WebGUI interface
22 TCP Admin machine to CFA SSH-based management (optional)