Not too long ago I carried out strict firewall guidelines on ESXi hosts. All appears to work. However a while later, we seen that our VM deployments are generally failing with a message “Can’t hook up with host”
The problem was taking place once we had been cloning a template to a distinct cluster than the template was. In that case, the file copy goes over the community.
The problem was attributable to a firewall rule that prevented ESXi hosts from speaking on port 902. To repair this, I added our ESXi networks to the “allowed IP” checklist on the next firewall guidelines – vSphere Net Consumer and NFC. After that, cloning operations began to work.