commvault.com commvault.com
Question

hyperscale firewall ports

  • 30 January 2024
  • 7 replies
  • 80 views
S
Rank
Userlevel 1
Badge +7

Hello,

 

Are all the firewall ports listed here (data protection network, except 8400,8403,8800-8900) only need to be open between hyperscale nodes or are they also needed between commserve/clients and hyperscale nodes?

Hyperscale nodes will be used as media agents.

 

https://documentation.commvault.com/2023e/essential/firewall_port_requirements_for_hyperscale_x_reference_architecture.html

7 replies

C
Rank
Userlevel 5
Badge +14

Hello @Sandy11 

Both ports 8400 and 8403 would need to be opened between the Nodes, the CommServe, and the Clients. 8400 is for regular communication, 8403 is for tunneled communication.

 

TCP Ports Used for Services - https://documentation.commvault.com/2023e/expert/tcp_ports_used_for_services.html

Port Requirements for Commvault - https://documentation.commvault.com/2023e/essential/port_requirements_for_commvault.html

 

Thank you,

Collin

S
Rank
Userlevel 1
Badge +7

Thanks but my question is actually reverse of that. Do we need rest of the ports listed in the article below just between media agents or also with clients and commserve?

 

https://documentation.commvault.com/2023e/essential/firewall_port_requirements_for_hyperscale_x_reference_architecture.html

Scott Moseman
Rank
Userlevel 6
Badge +18

Thanks but my question is actually reverse of that. Do we need rest of the ports listed in the article below just between media agents or also with clients and commserve?

 

https://documentation.commvault.com/2023e/essential/firewall_port_requirements_for_hyperscale_x_reference_architecture.html


The other ports should only be necessary during deployments.

Thanks,
Scott
 

Commvault Enterprise Success
S
Rank
Userlevel 1
Badge +7

Is that just between hyperscale nodes or also from clients towards hyperscale nodes? The article does not specify source and destination.

 

I don’t think avahi ports are required to be opened for clients?

Scott Moseman
Rank
Userlevel 6
Badge +18

Is that just between hyperscale nodes or also from clients towards hyperscale nodes? The article does not specify source and destination.


The deployment doesn’t involve Clients, so I imagine only the nodes and CommServe.

Thanks,
Scott
​​​​​​​

Commvault Enterprise Success
N
Badge +5

@Scott Moseman @Collin Harper @R Anwar 

can you please confirm if i am deploying HSX to existing commcell, then i only need to open ports specific to Media agents given in below link between HSX nodes , commserv server and clients?

https://documentation.commvault.com/2023e/essential/port_requirements_for_commvault.html

apart from above ‘General commvault ports’ should i also open below HSX specific ports between HSX nodes , commserv server and clients? dont i need to open these ports if i am not enabling firewall in HSX nodes ?

https://documentation.commvault.com/2023e/essential/firewall_port_requirements_for_hyperscale_x_reference_architecture.html

C
Rank
Userlevel 5
Badge +14

Hello @Noushad 

For these, it's just between nodes, he doesn't have to open them from CS to the nodes/clients.

https://documentation.commvault.com/2023e/essential/firewall_port_requirements_for_hyperscale_x_reference_architecture.html

The normal ports would be required for CS <> MediaAgent <> Client communication.

https://documentation.commvault.com/2023e/essential/port_requirements_for_commvault.html

 

Thank you,
Collin

Reply


Terms & ConditionsCookie settings