How is the communication from the Avamar Proxy to the Avamar/DD repository secured?

Avamar server communicates with proxy through these ports and prococols:

137 UDP NETBIOS Name Service Avamar proxy Used for Avamar proxy communication.

138 UDP NETBIOS Datagram Service Avamar proxy Used for Avamar proxy communication.

139 TCP NETBIOS Session Service Avamar proxy Used for Avamar proxy communication.

53 TCP/UDP DNS Required for name resolution and DNS zone transfers TCP connection to DNS is required by VMware proxy nodes.

As for certification, only the default certificate from vcenter server needs installing to Avamar server. There is no addtional security requirement between proxy and Avamar server.

Thank you Kevin and Pratique for your quick response. 

The Product Security Guide  7.0 in the Client / Server Access and Authentication section does not specifically mention the authentication method that the Proxy uses.   Knowing that the Proxy is running the Avamar Client should I assume that one way TLS authentication is being used from the Proxy (client) to the Avamar Grid (Server) using the default self signed certificates?  Quote from Product Security Guide "Avamar clients and Avamar servers use Transport Layer Security (TLS) certificates and Public Key Infrastructure (PKI) for authentication and optional encryption of data in transit."

Data Domain authentication is not specifically called out in the documentation so I will need to do some research.  I am thinking SSL.  Thanks again.

Hi dab001,

You are welcome. Please mark my answer as correct/helpful answer if it helps. Thanks.