Can we disable port 445 in veeam as it is a security vulnerbility

Shaveen · Post by **Shaveen** » Aug 04, 2023 6:08 am this post

Hello guys,

I wanted to confirm if we can disable a specific port used by veeam or can we change the port it is using ?
Our client regularly perform vulnerabilities assessment on new software installation and they found that port 445 is a security vulnerability after veeam installation

Thank you

Post by **Mildur** » Aug 04, 2023 6:52 am this post

Hello Shaveen

Port 445 is used to deploy agents and for restoring files directly to the agent from the Veeam Backup & Replication console.
It's the default port for the SMB protocol. The machine is actively listening on it. You cannot change it.
https://helpcenter.veeam.com/docs/backu ... ml?ver=120

If you want to try to disable this port, you must use workarounds for both features:

Agent deployment:
- Use protection group <Computers with pre-installed agents> to manually deploy the agent binaries:
https://helpcenter.veeam.com/docs/backu ... ml?ver=120

Restore:
Direct restore won't be possible. Therefore store the file on a local location and copy it manually by other tools to the agent machine.

The port is also used when you configure a protection group. It must be open from the backup to the distribution server in order to deploy the component.

Best,
Fabian

R&D Forums

Can we disable port 445 in veeam as it is a security vulnerbility

Re: Can we disable port 445 in veeam as it is a security vulnerbility

Who is online