UDP ports

I know we covered this in a case, but I wanted to post the port requirements listing.

http://s3.amazonaws.com/zertodownload_docs/Latest/Zerto%20Virtual%20Replication%20Zerto%20Virtual%20Manager%20%28ZVM%29%20-%20vSphere%20Online%20Help/index.html#page/ZertoVirtualManagerInstallationandConfiguration%2FInstall_VC.1.4.html

Anyone else see the UDP packets on ports like 44446, 44447, 44448?

I see them coming from the ZRAs between sites.

The UDP activity is from the dhclient on the VRA. We have a feature request to change the behavior in future versions.  However, as long as you have the required ports open per our documentation, everything will function correctly.

Is there a way to turn this off on the VRAs?

We just ran into this as well, but found something slightly different.  A security tool we had found that the VRA was sending UDP traffic to other VRA’s in the same subnet and another site.  It always started at UDP port 44447 and incremented from there.  That is exactly how tracepath works.  Come to find, there is a cron job on the VRA that runs a series of connectivity checks constantly to the other devices, one of those tests is tracepath.  Below is the crontab entry, and if you cat out that script you’ll see the references to tracepath and how it reads in the IP’s from a file.  Hope this helps someone, as it was driving us nuts.

crontab -l | grep Connectivity
0 * * * * /mnt/run/scripts/periodicPeersConectivityTester.sh 2>&1 | /mnt/run/zvr/bin/LogWriter /mnt/logs/peersConnectivity 100