diff --git a/modules/installation-network-user-infra.adoc b/modules/installation-network-user-infra.adoc
index 8fdb834e3974..a87567e2d03a 100644
--- a/modules/installation-network-user-infra.adoc
+++ b/modules/installation-network-user-infra.adoc
@@ -27,30 +27,62 @@ components to communicate. Each machine must be able to resolve the host names
 of all other machines in the cluster.
 
 .All machines to all machines
-[cols="2a,5a",options="header"]
+[cols="2a,2a,5a",options="header"]
 |===
 
-|`2379`-`2380`
-|etcd server, peer, and metrics ports
+|Protocol
+|Port
+|Description
 
-|`6443`
-|Kubernetes API
+|ICMP
+|N/A
+|Network reachability tests
 
+.3+|TCP
 |`9000`-`9999`
 |Host level services, including the node exporter on ports `9100`-`9101` and
 the Cluster Version Operator on port `9099`.
 
-|`10249`-`10259`
+|`10250`-`10259`
 |The default ports that Kubernetes reserves
 
 |`10256`
 |openshift-sdn
 
+
+.3+|UDP
+|`4789`
+|VXLAN and GENEVE
+
+|`6081`
+|VXLAN and GENEVE
+
+|`9000`-`9999`
+|Host level services, including the node exporter on ports `9100`-`9101`.
+
+|TCP/UDP
 |`30000`-`32767`
 |Kubernetes NodePort
 
 |===
 
+.All machines to control plane
+[cols="2a,2a,5a",options="header"]
+|===
+
+|Protocol
+|Port
+|Description
+
+.2+|TCP
+|`2379`-`2380`
+|etcd server, peer, and metrics ports
+
+|`6443`
+|Kubernetes API
+
+|===
+
 [discrete]
 == Network topology requirements