Veeam Backup & Replication fails to connect to Linux servers based on Debian, SLES or RHEL/CentOS distributions with default firewall configuration

KB ID:
2986
Product:
Veeam Backup & Replication
Version:
any
Published:
Last Modified:
2020-02-05

Challenge

Veeam Backup & Replication fails to connect to Linux servers based on Debian, SLES or RHEL/CentOS distributions with default firewall configuration.

Cause

Linux OS firewall configuration and/or security rules restrict connections to the required ports.

Solution

Default security settings differ for each Linux OS distribution and may require additional configuration to allow connections to the required ports.

NOTE: keep in mind that the port range for earlier versions is from 2500 to 5000.


Firewall rules

Debian
In most Debian distributions, ports from 2500 to 3300 are opened by default. If connections to the Linux server fail, make sure that Linux OS does not have restrictions for this range of ports.

SLES
Use the iptables utility to allow connections to the port range 2500–3300:i

iptables -I INPUT -p tcp —dport 2500:3300 -m state —state NEW -j ACCEPT

RHEL/CentOS
Use the iptables utility to allow connections to the port range 2500–3300:

iptables -I INPUT -p tcp —dport 2500:3300 -m state —state NEW -j ACCEPT
 

SELinux policy

SELinux policy must be configured to allow connections to the required range of ports. By default, SELinux policy restricts such connections.

To disable SELinux policy, open the /etc/selinux/config file and disable the SELinux mode. Save the file and reboot your system.

More Information

Please be aware that we’re making changes which will restrict access to product updates for users without an active contract.

OK

Rate the quality of this KB article: 
4 out of 5 based on 9 ratings

Couldn't find what you were looking for?

Below you can submit an idea for a new knowledge base article.

Report a typo on this page:

Please select a spelling error or a typo on this page with your mouse and press CTRL + Enter to report this mistake to us. Thank you!

Spelling error in text:

Submit