Hello all,
the cybersecurity dpartment of one of our customers is requesting more detail on the traffic flow to open the ports for Tenant backup server. we have been searching on the documentation, but we haven't found any more information apart from the one found on the ports section:
https://helpcenter.veeam.com/docs/backu ... ml?ver=120
However, we need to provide them with more information on each of the ports (6180, 22, 80 and 443) that we have requested to be opened such us:
- is traffic inbound, outbound or both?
- What kind of traffic goes through each port (there are some information about this on the table but we need more detail)
- What would happend if they do not open any of the required ports?
Thanks in advance for the help.
Have a nice day. Kind regards all,
Juan
-
juan99
- Service Provider
- Posts: 1
- Liked: never
- Joined: Jul 07, 2023 10:40 am
- Full Name: Juan
- Contact:
-
Mildur
- Product Manager
- Posts: 8735
- Liked: 2296 times
- Joined: May 13, 2017 4:51 pm
- Full Name: Fabian K.
- Location: Switzerland
- Contact:
Re: Tenant backup server traffic flow
Hi Juan
Tenant to internal Tenant NEA --> Port 22 - Management of the network extension appliance. Which is only used for Cloud Connect Replicas.
Tenant to Internet --> Port 80 + 443 - Querying the CRL/CA of the service providers SSL certificate.
Best,
Fabian
PS:
Please register yourself in our service provider user group. This gives you access to our hidden service provider sub forums where service provider products are discussed: Apply for the Cloud and Service Providers user group
I will move this topic to the Service Provider subforums, where our cloud connect teams are active. They can add additional information if necessary.
Traffic against Veeam Cloud Connect is always outbound from the Tenant to the Service Provider. But the Service Provider can use this from the tenant initiated connection to connect to the Tenants backup server with the Remote Console or with PowerShell. That's only possible if the Tenant allowed Remote Management when adding the Service Provider.- is traffic inbound, outbound or both?
Tenant to Service Provider --> Port 6180 - Veeam backup data, Veeam backup metadata and Veeam related Management and Monitoring traffic (if allowed, then this data will be collected and displayed in the Service Provider Console)- What kind of traffic goes through each port (there are some information about this on the table but we need more detail)
Tenant to internal Tenant NEA --> Port 22 - Management of the network extension appliance. Which is only used for Cloud Connect Replicas.
Tenant to Internet --> Port 80 + 443 - Querying the CRL/CA of the service providers SSL certificate.
Best,
Fabian
PS:
Please register yourself in our service provider user group. This gives you access to our hidden service provider sub forums where service provider products are discussed: Apply for the Cloud and Service Providers user group
I will move this topic to the Service Provider subforums, where our cloud connect teams are active. They can add additional information if necessary.
Product Management Analyst @ Veeam Software
Who is online
Users browsing this forum: Bing [Bot] and 122 guests