The TCP port requirements for the default configuration, without overriding connect options in the Client Attributes (bpclient) or Firewall (CONNECT_OPTIONS) settings, or separate master and EMM servers, or legacy security considerations are as follows:
· Master server to media server requires the TCP ports for vnetd 13724 and PBX 1556, bidirectional.
· Master server to client requires the TCP port for vnetd 13724.
· Client to master server requires the TCP port for vnetd 13724 for client-initiated, not server-initiated, operations. Accordingly, it is generally best to open vnetd bidirectional in case client-initiated operations are needed at a future date.
· Media server to client requires the TCP port for vnetd 13724.
· Media server to media server requires the TCP port for vnetd 13724, bidirectional.
· SAN client and master/media servers require the TCP ports for vnetd 13724 and PBX 1556, bi-directional.
· Java/Windows admin consoles to master and media servers requires the TCP ports for vnetd 13724 and PBX 1556 bidirectional.
· If using VxSS and NetBackup Access Control (NBAC):
Master require the TCP ports to/for vrts-at 2821 and vrts-az 4032.
Media servers require the TCP ports to/for vrts-at 2821 and vrts-az 4032.
Clients require the TCP port to/for vrts-at 2821.
Java/Windows admin consoles require the TCP port to/for vrts-at 2821.
· If using the OpenStorage plug-in by DataDomain:
Requires access to UDP port 111 and TCP port 2049 on the target DataDomain array.
Optimized duplication hosts requires the TCP ports for 10082 and 10102 to be open.
NetBackup 7.0.1 Considerations
The vnetd process is still listening on TCP port 13724. But most connections that previously used the vnetd port will now prefer to use the PBX port 1556. If the PBX port is unreachable, then the vnetd port will be used. Note that the Java console to master server uses the vnetd port for connection to bpjobd and the PBX port for all other connections. For efficiency, internal sockets on the loopback interface to processes on the same host use the daemon ports instead of passing through vnetd or PBX.
Network Address Translation (NAT) and Port Address Translation (PAT) Considerations
The use of NAT and PAT is not supported with NetBackup. See TECH15006 in the Related Articles section for details.