Hello All, I am creating a POC for a customer in customer env where we are deploying Rancher manager(Rancher-UI) on AKS. From That Rancher UI we are trying to create a new downstream cluster in DHCP enabled private network environment on vSphere. We have a firewall between both env. We have allowed only 443 on firewall where source is AKS vnet & destination is vsphere network. Rancher UI is up & running on AKS. But While creating downstream cluster from Rancher UI, VMs are getting deployed with different private IP(due to DHCP). It is getting stuck at waiting for agent to check in & apply initial plan (logs from provision logs on rancher UI). Do we need to allow other ports on firewall like 9345, 6443, 10250, 2379, 2380, 5473 etc for this to work ? Where in our lab setup on the firewall we have any*any allowed it works smooth. I am suspecting ports can be the issue. Could you please assist here & guide ? do we need to allow these ports on Firewall as the network is private / we need to allow gateway in DHCP ? This document is confusing - https://ranchermanager.docs.rancher.com/getting-started/installation-and-upgrade/installation-requirements/port-requirements Anyone having a similar setup can assist. Thanks.