Disabling SMB 1.0 / CIFS on Veeam Servers (NotPetya)

Availability for the Always-On Enterprise

Disabling SMB 1.0 / CIFS on Veeam Servers (NotPetya)

Veeam Logoby Brunok » Wed Jun 28, 2017 8:48 am

Hi all,

current "NotPetya/Petrwarp" ransomware and Wannacry etc. used SMB 1.0 / CIFS for spreading along the network (and some other things). As on a client workstation it can help to disable SMB 1.0 to protect the system, it is often not possible to do the same on a server. I am asking myself, what impact it will have on the veeam-infrastructure (B&R Server, Repositories, Off-Host-Proxies..) if we disable SMB 1.0 / CIFS Sharing on these Servers. Does Veeam uses SMB 1.0 protocol in any way ?
What about Repositories on synology NAS boxes ?

My idea is to protect the backup-envoirement at least against the SMB-vulnerability. Of course, other attacks like wmic / psexec would be still there..

any suggestions ?
Thx
Bruno
Brunok
Influencer
 
Posts: 22
Liked: 1 time
Joined: Tue Sep 02, 2014 7:16 am
Full Name: Bruno

Re: Disabling SMB 1.0 / CIFS on Veeam Servers (NotPetya)

Veeam Logoby kubimike » Wed Jun 28, 2017 2:50 pm

Nothing ran like that for awhile when I didnt want to patch
https://forums.veeam.com/post243062.html?hilit=smb#p243062
kubimike
Expert
 
Posts: 229
Liked: 22 times
Joined: Fri Feb 03, 2017 2:34 pm
Full Name: MikeO

Re: Disabling SMB 1.0 / CIFS on Veeam Servers (NotPetya)

Veeam Logoby nmdange » Wed Jun 28, 2017 3:10 pm

We have SMBv1 fully disabled in our environment on all servers and clients and it causes no issues with Veeam.
nmdange
Expert
 
Posts: 180
Liked: 53 times
Joined: Thu Aug 20, 2015 9:30 pm

Re: Disabling SMB 1.0 / CIFS on Veeam Servers (NotPetya)

Veeam Logoby Brunok » Thu Jun 29, 2017 7:06 am

Thank you for the answers.
nmdange wrote:We have SMBv1 fully disabled in our environment on all servers and clients and it causes no issues with Veeam.

Did you do this manually (remove the feature / edit registry) or did you only full patch all servers ( MS17-010 ) ?
Brunok
Influencer
 
Posts: 22
Liked: 1 time
Joined: Tue Sep 02, 2014 7:16 am
Full Name: Bruno

Re: Disabling SMB 1.0 / CIFS on Veeam Servers (NotPetya)

Veeam Logoby IHeartCats » Tue Jul 18, 2017 2:16 pm

Thanks for your replies on this. I came to this forum as Veeam support wasn't able to answer if Veeam had any dependency on SMBv1 and suggested looking here.
IHeartCats
Lurker
 
Posts: 1
Liked: never
Joined: Tue Jul 18, 2017 1:58 pm
Full Name: Helen


Return to Veeam Backup & Replication



Who is online

Users browsing this forum: Bing [Bot], Google [Bot], Google Feedfetcher, jay.cheon, Matt@ManSol and 23 guests