VMmanager Knowledge Base
en En
es Es
Your feedback is an opportunity for improvement!
Take part in the survey and contribute to the development of the ISPsystem ecosystem.
Take the survey
Documentation
/
VMmanager Knowledge Base
/
Clusters
/
How to expand the port range for VNC and SPICE?

How to expand the port range for VNC and SPICE?

By default, ports between 5900/TCP and 6900/TCP are reserved on cluster nodes for connecting to virtual machines (VMs) via VNC and SPICE. A separate port is used to connect to each VM. If the cluster node hosts more than 1000 VMs, expand the port range used:

  1. Connect to the cluster node via SSH. For more information about connecting via SSH, see Workstation setup.
  2. In the /etc/nftables/vmmgr.nft file in the string like: 
    tcp dport { 5900-6900, 16514, 49152-49215, 8443 } ct state { new, untracked } accept comment "vmmanager ports"
    change the "5900-6900" value to the desired range. For example, if you are going to host 2000 VMs on the node, specify the "5900-7900" range: 
    tcp dport { 5900-7900, 16514, 49152-49215, 8443 } ct state { new, untracked } accept comment "vmmanager ports"
  3. To apply the settings, we recommend rebooting the cluster node:  
    reboot
     If this is not possible, restart the nftables subsystem with the commands:  
    nft flush ruleset
    nft -f /etc/nftables/vmmgr.nft
The article was last updated on 10.23.2024. The article was prepared by technical writers of ISPsystem.