Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ NAS Administrator's Guide
  3. Section II. Using NAS-Data-Protection (D-NAS)
  4. D-NAS overview
  5. Limitations and considerations
NetBackup™ NAS Administrator's Guide

Limitations and considerations

Before setting up a NAS-Data-Protection policy for your workloads, consider the following.

Note:

If you use cloud as a storage unit, you must configure the appropriate buffer size. Refer to the NetBackup Cloud Administrator's Guide.

Note the following important points about the NAS-Data-Protection policy.

  • The NAS-Data-Protection is not supported in the DNAT and CloudScale environments.

  • This policy does not support copy-based retention for Snapshot images. Ensure that you carefully plan your policy scheduling and snapshot retention in SLP.

  • Client-side deduplication is not supported for the NAS-Data-Protection policy.

  • A Vendor Change Tracking (VCT) enabled backup with an incremental schedule requires an initial base snapshot to identify the variances between the current and base snapshots. A differential incremental schedule refers to creating a base snapshot copy from a previous differential incremental, cumulative incremental, or full schedule. The cumulative incremental schedule refers to creating a base snapshot copy from a full schedule. During VCT-enabled backups with incremental schedule, if the base snapshot copy is not available, then the backup operation might fail with an error in the Activity monitor.

  • NAS-Data-Protection policy is a snapshot-enabled data protection policy. You can configure only the Storage Lifecycle Policy (SLP) for the policy's storage destination. Additionally, the SLP should always have Snapshot as the primary job and backup from snapshot as the secondary job.

  • If the NAS-Data-Protection policy is used in a backup host that is running any antivirus software, the parent backup from snapshot job might hang.

    The interaction between the NetBackup processes may be hindered by the antivirus software, resulting in process hang-ups. In this particular scenario, the nbcs process on the backup host might hang resulting in the backup-from-snapshot job to hang. Create an antivirus exclusion for the nbcs process on the backup host.

    To cancel the hung job:

    • Note down the process ID of the nbcs process that is running on the backup host. This can be obtained from the job details section.

    • Log on to the backup host and manually kill the nbcs process.

    • Refer to the Technote for more details regarding how to exclude the NetBackup processes from virus scanning: https://support.cohesity.com/s/article/article-100004864

    • If the above steps cannot resolve the issue (and the nbcs hang persists), uninstall the network component from the antivirus. On Symantec Endpoint Protection, this is called the "Network and Host Exploit Mitigation" component.

  • For the NAS-Data-Protection policy, multiple images are created for a single volume that is backed up. The number of images is equal to the value configured for the Maximum number of streams per volume in the policy. Since a single image cannot be referred from a single volume, NetBackup groups the images associated with a volume. When an operation is performed on one of the images in a volume, the same operation is also performed on the other grouped images in the volume. For example, if the Maximum number of streams per volume parameter is set as four, and you select one image for a volume to expire, the other three images also expire. The image grouping is applicable for the following operations:

    • Browse and restore

    • Image expiration

    • Image import

    • Image duplication

    • Image verification

    • Set primary copy

      Note:

      Image grouping is not applicable for importing images as part of the Image Sharing operation.

  • To enable checkpoint restart for NAS-Data-Protection policies created before upgrading to version 9.0, you must select the Take checkpoints every check box and enter a value in minutes.

Feedback

Was this page helpful?
Previous

About the All media server pool option

Next

D-NAS Planning and Tuning

Feedback

Was this page helpful?