Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Client behind a firewall

2003-08-29 10:29:10
Subject: RE: Client behind a firewall
From: donald.ritchey AT exeloncorp DOT com
To: sifr AT aifb.uni-karlsruhe DOT de, amanda-users AT amanda DOT org
Date: Fri, 29 Aug 2003 09:22:19 -0500 
For our implementation, we used the port ranges of UDP 890-899, and TCP
50000-50040.
We also left open the standard request ports (10080, 10082, 10083).

The key item, in my opinion, is the TCP port range, because otherwise,
Amanda will
simply choose some random port number and start incrementing from there.
With the
port range specified, Amanda is very well behaved and only uses ports in the
range
we gave her.

Questions?

Don Ritchey
Donald.Ritchey AT exeloncorp DOT com


-----Original Message-----
From: Simon Frettloeh [mailto:sifr AT aifb.uni-karlsruhe DOT de]
Sent: Friday, August 29, 2003 9:16 AM
To: amanda-users AT amanda DOT org
Subject: Client behind a firewall


Hi!

I've read in the mailinglist archive, that I've got to recompile amanda 
with the option "--with-tcpportrange=X,Y" and 
"--with-udpportrange=xxx,yyy" to let the Amanda Backup Server access the 
client behind the firewall. Before that I've got to open these ports on my 
firewall.

My questions:
- What are the standard/default values, if you omiss these options during 
compilitation? Or is instead a random port used?

- Do I really need to use "--with-udpportrange=xxx,yyy", if I only want to
backup the client and don't need a connection from my amanda client to the
index server

- How big has this portrange to be? Are three ports enough or am I able to
use only one? Are there any further restrictions like the portrange has to 
be below/above a certain number (I've noticed amanda using 3503 to 3505 to 
send the backups).

I'm using 2.4.19 Kernel. Is there a firewall rule to get Amanda working
without recompiling it?

Thnx & Bye,
Simon

-- 
Simon Frettloeh
Institute AIFB (Applied Computer Science and Formal Description Methods)
University of Karlsruhe
Engler Str. 11 - 76128 Karlsruhe - Germany


************************************************************************
This e-mail and any of its attachments may contain Exelon Corporation
proprietary information, which is privileged, confidential, or subject 
to copyright belonging to the Exelon Corporation family of Companies. 
This e-mail is intended solely for the use of the individual or entity 
to which it is addressed.  If you are not the intended recipient of this 
e-mail, you are hereby notified that any dissemination, distribution, 
copying, or action taken in relation to the contents of and attachments 
to this e-mail is strictly prohibited and may be unlawful.  If you have 
received this e-mail in error, please notify the sender immediately and 
permanently delete the original and any copy of this e-mail and any 
printout. Thank You.
************************************************************************
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Client behind a firewall, Simon Frettloeh
Next by Date:  Making an index of a tape after the fact..., David Barcelo
Previous by Thread:  Client behind a firewall, Simon Frettloeh
Next by Thread:  Making an index of a tape after the fact..., David Barcelo
Indexes:  [Date] [Thread] [Top] [All Lists]