Is anyone able to clarify the required ports for the Veeam Agent to connect to the B&R and Repo server as the Veeam documentation for this seems to not list everything required.
We need to lock the port list down as tight as possible, but it appears that we have to punch a huge hole through the firewalls to allow backups to work correctly. https://helpcenter.veeam.com/endpoint/1 ... ports.html
I'm backing up windows VM's from a customers network that is hosted on our private cloud platform to our Veeam platform and have a locked down rule on our Veeam platform firewall that only allows 10001 and 2500-5000 through, this allows the Veeam agent to backup to our platform without any problems at all, the problem with the 2500-5000 range though is this punches a massive hole through our firewall from that customer so to lock it down further we only allow from the source the dynamic range listed in the doc of 49152-65535.
With the dynamic source range added the backups now wont work and when i look at the logging on the firewall its listing ports being opened below this range all the way down to below 10000. How are we supposed to be able to establish a secure connection when Veeam needs to open almost every single port? Or is there a way to tell the Veeam agent to only use a set amount of ports?