Skip to main content

Hi all!

 

In our environment, we have constant scanning of ports from Qualys and other network security tools.  We are always randomly having ports seemingly blocked, or port exhaustion, or in use from scanning.  We can’t quit put our finger on the whole occasional pipeline error, or other CommVault network error.  

 

We are 95% virtual something like 5,000 Vm.  Would anyone have any suggestions on how we can protect our infrastructure from the scans, and port blocks?  Can I use topology between the 20 hyperscale media agents and commserve to force them onto 8403?  Any suggestions?

Could you maybe discuss the possibility of whitelisting CV ports in the Security Tools you use?

https://documentation.commvault.com/11.24/essential/7102_port_requirements_for_commvault.html


Reply