+8
Hi!
We recently deployed 2 HyperScale X Reference Architecture clusters at a customer, and found out that:
In my opinion, in current times, it is strange that by default the solution is so insecure.
Why are the firewall and ransomware protection not enabled by default? And will that be addressed in a future release?
Best answer by R Anwar
View original
+8
Hi
Ransomware protection by default for HSX is being worked on and should be available in future releases.
For enabling firewalld, you can add the regkey sHSEnableFirewall Y in /etc/CommvaultRegistry/Galaxy/Instance001/MediaAgent/.properties
It will enable firewalld by default from next boot. Ensure you meet the firewall requirements.
+8
Hi
Thanks for the fast response! Good to know this is being worked on!
Regarding the firewall requirements, I see that for Commvault Distributed Storage (CDS), a HUGE amounts of ports are required…! This is probably only required on the Storage network, right? And not on the Data Protection network?
+8
Anyone able to confirm? Thanks!
+23
+8
Hi
Yes, these port requirements for CDS is on the Storage Pool network.
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
