Skip to main content
commvault.com commvault.com
Answer

Trafic between cascading network proxy

  • September 14, 2021
  • 5 replies
  • 197 views
C
Novice
Forum|alt.badge.img+3

We are currently having Commvault setup in Amazon. To our customers we are having a cascading Network proxy. Commvault is setting up a tunnel from the Network proxy in amazon to the network proxy at our customer site.

I would like to know what kind of traffic is being used between the two network proxies? (tunnel)
Is it save to send this traffic over the internet without VPN?

 

Thanks in advance!

Best answer by Mike Struening

@CVbackup , this document gives the details on each of the tunnel options:

https://documentation.commvault.com/11.24/expert/7375_configuring_outgoing_tunnel_connections.html

Specific to your selected option:

Encrypted

(HTTPS)

  • This protocol encrypts and authenticates the connections between CommCell components through Secure Socket Layer (SSL), similar to what happens when a web browser opens secure connections with https:// prefix.

  • Data and control traffic are transferred using HTTPS protocol.

Note: HTTPS and HTTPS tunnel traffic may be interrupted by a third-party security or traffic monitoring device. If such a device exists, make sure to add an exclusion from our traffic, or switch the tunnel protocol to Raw.

5 replies

Onno van den Berg
Community All Star
Forum|alt.badge.img+22

@CVbackup if you enable the following setting than all traffic that is send into the tunnel is encrypted.

 

You can also enable it from the CommCell console as well. 

Mike Struening
S
MichaelCapon
C
Novice
Forum|alt.badge.img+3
  • CVbackupNovice
  • Author
  • Novice
  • September 15, 2021

onno

 

Thanks! i will have look @ it.

Most of the time i use CommCell console.

Onno van den Berg
Community All Star
Forum|alt.badge.img+22

This is the setting you are looking for….

 

Mike Struening
C
J
C
Novice
Forum|alt.badge.img+3
  • CVbackupNovice
  • Author
  • Novice
  • September 16, 2021

I checked excryption is allready enabled. (see screenshot)

Question:
What kind of encryption is being ussed and what kind of tunnel is being setup?
HTTPS?


We are currently using a VPN connection to our customers; the network engineers are asking if we can send this directly over the internet? Whiteout a VPN connection.

Question:
Does anyone has expirience to send this directly over the internet without VPN connection?

 

 

 

Mike Struening
Vaulter
Forum|alt.badge.img+22
  • Mike StrueningVaulter
  • Vaulter
  • Answer
  • September 27, 2021

@CVbackup , this document gives the details on each of the tunnel options:

https://documentation.commvault.com/11.24/expert/7375_configuring_outgoing_tunnel_connections.html

Specific to your selected option:

Encrypted

(HTTPS)

  • This protocol encrypts and authenticates the connections between CommCell components through Secure Socket Layer (SSL), similar to what happens when a web browser opens secure connections with https:// prefix.

  • Data and control traffic are transferred using HTTPS protocol.

Note: HTTPS and HTTPS tunnel traffic may be interrupted by a third-party security or traffic monitoring device. If such a device exists, make sure to add an exclusion from our traffic, or switch the tunnel protocol to Raw.
https://www.linkedin.com/in/michael-struening
Terms & ConditionsCookie settingsAccessibility statement