Hi Ansible community,

I am working with Ansible AWX (24.6.1), and I need to understand the connectivity requirements for ports mentioned below. Specifically, I want to know if these ports need to be enabled bidirectionally or if unidirectional connectivity is sufficient.

System/Service Port(s)

1 VMware vCenter TCP 443 (HTTPS)
2 Windows/Linux Servers TCP 22 (SSH), TCP 3389 (RDP for Windows)
3 PowerShell TCP 5985 (HTTP), TCP 5986 (HTTPS)
4 Network Devices TCP 22 (SSH)
5 Databases
a) Oracle (Default) TCP 1521
b) MSSQL (Default) TCP 1433
c) Postgres TCP 5432
6 Active Directory TCP 389 (LDAP), TCP 636 (LDAPS)
7 Office 365 TCP 443 (HTTPS)
8 SMTP (Mail) TCP 25

Could someone please clarify this for me? Any insights or best practices would be greatly appreciated!

Thanks in advance!

Regards,
Gowtham

AWX (and the worker nodes/execution nodes) needs connectivity to those targets, the targets do not need some type of reverse connectivity back to AWX, not even sure what that would be. If I understand you correctly, for your vCenter example, you’d submit or implement a firewall rule like:

source  | destination | dest port | dest protocol
awx IPs | vcenter IP  | 443       | TCP

This should give AWX connectivity to your vCenter. vCenter does not need to connect back to AWX’s port 443 if that’s what you’re asking.