Hello Commvault Community,
We have this situation:
On the switches, there are many attempts to connect agents with OS AIX installed to the Commvault infrastructure (the customer reported mainly that connections are being made to an air-gapped).
The environment has OneWay Firewall configured (not by topology but on group properties). There are two large groups: the 'Client Servers' group containing all production agents, and the 'Commvault servers' group containing all Commvault infrastructure (except the air-gap server, which does not participate in backups). On these groups a Network Route is configured, on Client Servers the Commvault Servers group is added as RESTRICTED and on the Commvault Servers group the Client Servers group is added as BLOCKED.
That is, it is the CV Infrastructure that should maintain a one-way tunnel with the production agents, not the other way around.
Unfortunately, for some reason AIX clients (only AIX, because in the logs of several Windows doesn’t show these errors in cvfwd.log) - are trying to establish a connection to Commserve and, interestingly, the Media Agent acting as a air-gap, which doesn’t participate in any way in the backups (it only serves as a target for the replica).
Below, for example, a snippet from the cvfwd.log of the client1 server (client on AIX):
You can see attempts to connect to media_agent (air-gap), to which conceptually - nothing should connect.
These attempts are often generated every minute, by x servers - which causes quite a load on the production switches.
Why these connection attempts are being made (what might be the reason)?