VMware Cloud Community
StartWandowsNgr
Contributor
Contributor

Changing vSphere Web UI port from 443?

Hello,

We are currently running ESX 6.5 servers with HTML5 console access to underlying VMs over port 443. This port is also shared by the vSphere web UI, which we want to obscure from the outside world, while still allowing HTML5 console access to VMs. Is there a way to change the port number for vSphere connections without disrupting HTML5 console access? I'd like to leave 443 open, but prevent anyone from hitting the UI unless they are already internal. I have found nothing in my searching that indicates a way to do so on 6.5. I found an old article for 5.0 that showed a port number in a config file, however that file doesn't appear to exist in 6.5. Any help is appreciated.

Thanks!

Reply
0 Kudos
4 Replies
PaulCradduck
Contributor
Contributor

Could you just use your firewall to not allow 443 access to your ESXi hosts from outside your network? It seems like using a firewall would be better than trying to change port numbers on the Web UI.

Reply
0 Kudos
StartWandowsNgr
Contributor
Contributor

The problem with that is that 443 is the port that HTML5 console access goes over. What I'm trying to do is retain console connectivity and disable web UI connectivity.

Reply
0 Kudos
StartWandowsNgr
Contributor
Contributor

Anyone?

Reply
0 Kudos
pwolf
Enthusiast
Enthusiast

I think you can do this via the /etc/vmware/rhttpproxy/config.xml file.

But this will have an impact on other services as well. So test on your own risk.

Reply
0 Kudos