I was just wondering if there is anything wrong with not allowing the CIM ports throught the firwall on the ESX servers. I am installing our servers and documenting the firewall rules and I know our security guys will ask. Thanks
Hello,
I would not, I believe CIM is used by VC for some things. However, the easiest test is to disable things and then see if VC works. I have yet to run that test. It is on my list.
Best regards,
Edward L. Haletky
VMware Communities User Moderator
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education. As well as the Virtualization Wiki at http://www.astroarch.com/wiki/index.php/Virtualization
I thought so too. I am building my VC server right now. I was hoping that someone could telling me why CIM needs to be open so i could go to your security guys with some knowledge.
Has anyone answered this question yet? I actually have Securuty guys asking why we need both CIm ports 5988 (http) and 5989 (https) open?
Anyone?
- Nicodemus