ADSM-L
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ADSM-L] tcp port usage of client

2013-06-17 14:21:22
Subject: [ADSM-L] tcp port usage of client
From: Richard Rhodes <rrhodes AT FIRSTENERGYCORP DOT COM>
To: ADSM-L AT VM.MARIST DOT EDU
Date: Mon, 17 Jun 2013 14:19:26 -0400 
Hi Everyone,

I am SO confused . . .

The security folks are checking/verifying what tcp ports are used on some
servers.  We got the question of just what ports TSM clients are using on
these servers.  The clients are all behind a firewall, but the question is
not about firewall port.  Rather it's just what ports these TSM clients
are using.

Client backups run just fine thru the firewall.
Clients are all AIX.
The TSM server the clients backup to runs on tcpport 1500 (default).
The dsm.opt is empty.

Here is the dsm.sys file on one of the AIX clients.
 SErvername  tsmX
   COMMmethod          TCPIP
    TCPPort            1500
    TCPServeraddress   tsmX
    nodename           clientY
    passwordaccess     generate
    inclexcl           /usr/tivoli/tsm/client/ba/bin/inclexcl
    schedlogname       /usr/tivoli/tsm/client/ba/bin/dsmsched.log
    webports 2123 2124
    httpport 1581 1582
    schedlogret        5
    errorlogname       /usr/tivoli/tsm/client/ba/bin/dsmerror.log
    errorlogret        5
    txnbytelimit       25600
    tcpwindowsize      64
    schedmode          prompted
    tcpbuf             64
    resourceutilization 3

This seems messed up:
  - has two entries on httpport which is invalid, not sure what result of
this is.
  - webports is specified, but is not using managedservcies.  I thought
      this options only applied if using managedservices with the
      scheduler running under cad.
  - Since scheduler is running directly (not under cad), there is no
      tcpclientport parm, so this is defaulting to 1501 (I think).
      This is the port the tsm server uses to prompt the client.
  - How does a webports and httport (that is bad) interact?

WIth all that, what tcp ports would a client like this be using?

I come up with this:
  1501 (dsmsched listening for prompt from TSM server)
  1581 (http connection for web gui via dsmcad)
  2123/2124 ? - no, parm is ignored
  1582 ? - no, invalid 2nd port on httpport
  random ? - I read several things about the client using a random port

Now, the security folks found dsmcad running on a wide range of ports on
different servers:  9385, 37872, 29423, some others.

Any thoughts are appreciated, especially how to set specific ports for the
tsm client to use.


Thanks

Rick







-----------------------------------------
The information contained in this message is intended only for the
personal and confidential use of the recipient(s) named above. If
the reader of this message is not the intended recipient or an
agent responsible for delivering it to the intended recipient, you
are hereby notified that you have received this document in error
and that any review, dissemination, distribution, or copying of
this message is strictly prohibited. If you have received this
communication in error, please notify us immediately, and delete
the original message.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [ADSM-L] locating an archived file takes forever, Lee, Gary
Next by Date:  Re: [ADSM-L] TSM VE plug-in server and java32w.e xe loop, Prather, Wanda
Previous by Thread:  Re: [ADSM-L] Migrating last 5.5 server to 6.3.3 and new hardware, Zoltan Forray
Next by Thread:  Re: [ADSM-L] tcp port usage of client, Lee, Gary
Indexes:  [Date] [Thread] [Top] [All Lists]