I'm trying to set up a proxy server on a remote site. It will use network mode to reach the remote vsphere infrastructure. The same proxy also has the repository on which i want to do the backups. This physical server (with DAS) has both role installed, and both proxy and repository are registered on my VBR server.
I then create a job on my VBR server which backups VMs from the remote vcenter. I chose as a target the remote repository, and to be extra sure, make the job use the remote proxy.
However when the job is running, i get the "connection timeout" error when processing VMs. Indeed, the VBR server tries to establish a connection with the remote repository on port 2500, for data transfer i suppose. As no data transfer is supposed to happen between the VBR server and the proxy at this stage, there are no firewall rules implemented between both sites to accomodate this traffic.
I don't understand why on earth would the VBR server need to connect on the remote repository on this port, when clearly the proxy should be the one moving the datas between the remote ESXis and the remote repository.
Is there something i'm missing here? The bazillion firewall rules needed for Veeam to work on a multi site setup is daunting enough, adding more is not an option especially if I have no proper understanding of what it is trying to do.