This image shows the firewall port assignments for a Zerto IT Resiliance Platform implementation.

The image shows five environments that are interconnected by arrows indicating the direction of data flow and the appropriate port assignment. These environments are:
  • Zerto SaaS Environment
  • Peer Environment
  • Zerto Environment
  • User Environment
  • Platform Environment
The Zerto SaaS Environment contains Zerto SaaS applications, which are connected via HTTPS from the Zerto Virtual Manager in the Zerto Environment over port 443.

The Peer Environment contains a Zerto Virtual Manager, which connects bidirectionally to the Zerto Virtual Manager in the Zerto Environment over HTTPS port 9071 and TCP port 9081. It also contains two Virtual Replication Appliances (VRA) comprised of LTR services connecting bidirectionally over TCP through ports 4007 and 4008.

The Zerto Environment contains a Zerto Cloud Manager (ZCM), which connects to the aforementioned Zerto Virtual Manager over HTTPS through port 9669. The Zerto Virtual Manager within the Zerto Environment contains an RLC service and a VRA. The RLC service uses TCP over port 9000 and the VRA uses TCP over port 9180. This ZVM to the aforementioned VRA in multiple paths:
  • Using TLS over TCP on port 4009 (the Checkpoints Port)
  • Using TLS over TCP on port 4006 (the Management and Control Port)
  • Using TLS over TCP on port 4005 (the Log Collection Port)
The VRA comprises an LTR service.
The User Environment contains these components (with their firewall port assignments):
  • ZCM GUI; connects to the Zerto Environment ZCM over HTTPS through port 9989.
  • ZCM REST APIs; connects to the Zerto Environment ZCM over HTTPS through port 9989.
  • ZSSP; connects to the Zerto Environment ZVM over HTTPS through port 9779.
  • ZVM GUI; connects to the Zerto Environment ZVM over HTTPS through port 9669.
  • Another set of ZCM REST APIs; connects to the Zerto Environment ZVM over HTTPS through port 9669.
  • Zerto Powershell Commandlets; connects to the Zerto Environment ZVM over HTTPS through port 9080.
  • Diagnostic Tool; connects to the Zerto Environment ZVM over HTTPS through port 9080.
The Platform Environment contains:
  • The VMware VCenter server, which is connected from Zerto Environment ZCM over HTTPS through port 433.
  • VMware ESX and ESXi hosts, which comprise multiple VMs and are connected to the Zerto Environment ZCM over HTTPS through port 433 and via SSH through port 22.
  • Two repositories:
    • Indexing repository for SMB only, which is connected bidirectionally to the Zerto Environment ZCM over SMB through port 445.
    • LTR repository, which is connected bidirectionally to the Zerto Environment VRA through either NFS on port 2049 or through SMB on port 445.