Hello Egoitz,
Is this thread clear? If you have your own dedicated CA, then take care of her :). This way and having level 4 bacula TLS configured as Josh explained, then your communication will be "secure" (never say that we are 100% secure...).
Thank you very much Josh.
Best regards,
Ana