Forum Discussion

alireza1023's avatar
2 months ago

setup Malware Scanning

Hi

I have some questions:

in NetBackup Security and Encryption Guide doc said:

For BYO setup, Instant access must be configured on MSDP storage server  See the "Configuring Universal share" section in Veritas NetBackup Deduplication Guide

1- what's MSDP BYO? if MSDP server is windows, is it BYO?

in  Veritas NetBackup Deduplication Guide doc said:

MSDP build-your-own (BYO) server prerequisites and hardware requirements to configure universal shares:

  • The universal share feature is supported on an MSDP BYO storage server with Red Hat Enterprise Linux 7.6 or later.
  • The universal share feature is not supported on SUSE Linux.

2- if windos is BYO too, then how about Malware Scanning? is it possible or I should deploy Redhat MSDP???

I have a windows MSDP to backup vmware vms with accelerator feature and want to deploy Malware scanning

Thanks in advance

  • in Managing scan host said:

    1. Note: Only SSH credentials are validated by connecting to scan host from the selected media server. The media server must be a Linux media server with NetBackup version 10.3 or later.

    does it means we should have linux media server? and malware scan is available for linux!!!

  • I have not played with malware scanning yet, and I cannot answer all your question about scanning.

    A BYO server is every netbackup master or media server that you create yourself (BYO = build your own). Windows or Linux, with MSDP or not.
    In other words, every server that it is not a netbackup appliance.

    To configure Universal share you need a netbackup Linux media server (BYO or appliance). You can not do it with Windows media servers.

    scan host is the system that will mount the backup image and scan it for malware. This system can be windows or linux

  • Hi

    I installed netbackup again, primary server 10.4.0.1 on rhel 8.10, media server is msdp and 10.4.0.1 on rhel 8.10, malware scanner 2.4 on windows server 2022

    docs is seemed incomplete, I installed nginx from redhat repository and nfs-server on media server but unsuccessful to run malware scanner, I prefer to configure malware scanner over nfs because my linux servers aren't joined to active directory

     

    when start malware scanner after 5 minutes I have 2 error:

    Error 4001:

    creating instant access mount from vmware-scan

    storage server ...

    the SPWS ID ...

    mount client ...

    unable to check status of the mount due to an error in instant access. /usr/openv/pdde/vpfs_actions failed. unable to importOSTImage. Could not import the ost image id ...

    failed to create the instant access mount

     

    Error 7910: 

    started on demand scan

    adding backup image for scanning

    unable to check status of the mount due to an error in instant access. /usr/openv/pdde/vpfs_actions failed. unable to importOSTImage. Could not import the ost image id ...

    Backup image scan summary failed: 1

     

    in docs only said in windows install nfs-client and create passwd and group file and install openssh-server

    I created registry value in HKLM\software\microsoft\clientfornfs\currentversion\default\AnonymousGid 0 and HKLM\software\microsoft\clientfornfs\currentversion\default\AnonymousUid 0, it's not on document

    in docs nothing about /etc/exports

     

    I tried to create Universal Share but it says: Failed to create universal share /usr/openv/pdde/vpfs_actions failed. operation not permitted please check if vpfsd is running

     

    in nbdevquery shows InstantAccess Flag and in ia_byo_precheck.sh shows Instant Access BYO is supported

    in vpfs_config:

    starts services required by BYO

    disable file delegation

    triggering reload of sts attributes in nbdb

    update smb.conf

    create logrotate.conf file for certain processes

    the logrotate config file already exists

    check and convert world readable nfs root share /mnt/vpfs_shares

    no world readable permission for nfs root share /mnt/vpfs_shares

    update_vpfs_mnt

    removed vpfs.mnt directory /usr/openv/pdde/vpfs/etc/vpfs.mnt

    re-link vpfs.mnt

    re-linked vpfs.mnt from/msdp/vol0/vpfs.mnt to /usr/openv/pdde/vpfs/etc/vpfs.mnt

    disable file delegation

    disabled automount of removable media

    starting nfs-server

    exportfs: no file system exported!

     

    please help me

  • Hi

    It's default netbackup malware scanner (avira) and it's credential is ok and validated credential but scan it's not ok

  • did you go through the link I provided to you in above post, have you done all the required steps?
    your media server needs to have samba/nfs availble for mounting the image on scanhost (if it is BYO device) and it is not already installed on the media server.the error seems to be related to mounting the image which I assume it could be due to misconfiguration.

    • alireza1023's avatar
      alireza1023
      Level 4

      all of them are ok

      visual c++ and openssh-server and nfs-client is installed. passwd and group file are created and Gid and Uid are 0