Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Administrator's Guide
  5. Section III. Configuring hosts
  7. Managing host properties
  9. Firewall properties
NetBackup™ Web UI Administrator's Guide

Firewall properties

To access this setting, in the web UI select Hosts > Host properties. Select the primary server or media server. If necessary click Connect, then click Edit primary server or Edit media server. Click Firewall.

The Firewall properties determine how the selected primary servers and media servers connect to the legacy services that run on that NetBackup host.

Servers are added to the Hosts list of the Firewall properties. To configure port usage for clients, see the Client attributes properties.

The Firewall host properties contain the following settings.

Table: Firewall properties

Property

Description

Default connect options

By default, the Default connect options include firewall-friendly connect options including the fewest possible ports to open.

The default options can be set differently for an individual server or client with the settings in Attributes for selected hosts.

To change the default connect options for the selected server or client, click Edit.

These properties correspond to the DEFAULT_CONNECT_OPTIONS configuration option.

Hosts

You can configure different default connect options for the hosts that are displayed in this list.

  • Click Add to add a host to the Hosts list.

    You must add a host name to the list before you can configure different settings for that host. Servers do not automatically appear on the list.

  • To configure different settings for a host, select the host name in the Hosts list. Then select the connect options in the Attributes for selected hosts section.

  • To remove the host from the list, locate a host name in the list. Then click Delete.

Attributes for selected hosts

This section displays the connect options for the selected server. To change the connection options for a server, first select the host name in the Hosts list.

These properties correspond to the CONNECT_OPTIONS configuration option.

BPCD connect back

This property specifies how daemons are to connect back to the NetBackup Client daemon (BPCD) as follows:

  • Use default connect options (An option for individual hosts)

    Use the methods that are specified under Default connect options.

  • Random port

    NetBackup randomly chooses a free port in the allowed range to perform the traditional connect-back method.

  • VNETD port

    This method requires no connect-back. The Cohesity Network Daemon (vnetd) was designed to enhance firewall efficiency with NetBackup during server-to-server and server-to-client communications. The server initiates all bpcd socket connections.

    Consider the example in which bpbrm on a media server initially connects with bpcd on a client. The situation does not pose a firewall problem because bpbrm uses the well-known PBX or vnetd port.

Ports

Select whether a reserved or non-reserved port number should be used to connect to the host name:

  • Use default connect options (An option for individual hosts)

    Use the methods that are specified under Default attributes.

  • Reserved ports

    Connect to the host name by a reserved port number.

  • Non-reserved ports

    Connect to the host name by a non-reserved port number.

To configure port usage for clients, see the Client attributes properties.

More Information

Client attributes properties

Feedback

Was this page helpful?
Previous

About Linux concurrent FT connections

Next

General server properties

Feedback

Was this page helpful?