Ports

Veeam Backup for RHV automatically creates firewall rules for the ports required to allow communication between the RHV backup proxy and the backup server.

Important

Some Linux distributions require manual configuration of firewall rules. For more information, see this Veeam KB article.

RHV Backup Proxy

The following table describes network ports that must be open to ensure proper communication of the RHV backup proxy with other backup infrastructure components.

From

To

Protocol

Port

Notes

Workstation web browser

RHV backup proxy

TCP/HTTPS

443, 8100

Used to access the RHV backup proxy web console.

RHV backup proxy

Backup server

TCP

10006

Used to communicate with the Veeam Backup & Replication server.

RHV manager

TCP/HTTPS

443

Used to communicate with the REST API service running on the RHV manager.

RHV manager

TCP

54323

Used to communicate with RHV Manager (hosted engine).

RHV host

TCP/HTTPS

443

Used to communicate with the REST API service running on an RHV host.

RHV host

TCP

54322

Used to communicate with RHV hosts.

Veeam backup repository or gateway server

TCP

2500-3300*

Default range of ports used as transmission channels for jobs and restore sessions. For each TCP connection that a job uses, one port from this range is assigned.

Ubuntu Security and OS Update repository

(security.ubuntu.com, archive.ubuntu.com)

TCP/HTTP

80

Used to get OS security updates.

.NET Core Update repository

TCP/HTTPS

443

Used to get .NET Core updates.

Veeam Updater repository

(repository.veeam.com, cloudfront.net)

TCP/HTTPS

443

Used to download RHV backup proxy update packages.

Nginx repository

(nginx.org/packages/, nginx.org/packages/keys/)

TCP/HTTPS

443

Used to download nginx packages required for RHV backup proxy web console updates.

* This range of ports applies to newly added backup infrastructure components. If you upgrade to Veeam Backup & Replication 11a (11.0.1.1261 P20220302) from earlier versions of the product, the range of ports from 2500 to 5000 applies to the already added components.

Backup Server

The following table describes network ports that must be open to ensure proper communication of the backup server with other backup infrastructure components.

From

To

Protocol

Port

Notes

RHV backup proxy,

Veeam Backup & Replication console

Backup server

TCP/HTTPS

8544

Used to communicate with the Platform Service REST API.

 

Backup server

FLR helper appliance

TCP

22

Used to connect to the helper appliance during file-level restore.

Backup server

TCP/HTTPS

6172

Used by the RHV Platform Service to enable communication with the Veeam Backup & Replication database.

RHV manager

TCP/HTTPS

443

Used to communicate with the REST API service running on the RHV manager.

RHV manager

TCP

54323

Used to communicate with the RHV manager (hosted engine).

RHV backup proxy

TCP/HTTPS

443, 8100

Used by the RHV Platform Service to connect to the RHV backup proxy.

 

Note

For the list of ports used by the backup server to communicate with backups repositories, see the Veeam Backup & Replication User Guide, section Used Ports.