Re: Amanda Through firewall
2004-07-14 10:18:05
Andreas Sundstrom wrote:
Paul Bijnens wrote:
Kaushal Shriyan wrote:
Can I allow amanda backup server to talk through firewall for accessing
amanda client host, Is there any way out
The general answer is to recompile amanda with a dedicated portrange
and open those ports in the firewall. See the explanation in
docs/PORT.USAGE .
If the firewall is running Linux, it could be as easy as loading the
amanda netfilter modules "ip_conntrack_amanda" and maybe "ip_nat_amanda".
Beware of 2.6.6rc2 kernel that are reported to give some trouble:
http://www.mail-archive.com/amanda-users AT amanda DOT org/msg26094.html
I've not yet verified this.
Just a quick note here.. the actual change that broke it were between
2.6.6-rc1 and 2.6.6-rc2. 2.6.7 still mess things up for me if I load the
amanda nat modules.
It seems this might be fixed now, I noticed that some changes were commited
to 2.6.8-rc1 regarding the amanda conntrack stuff. So i searched the devel
archives for netfilter and came up with this.
http://lists.netfilter.org/pipermail/netfilter-devel/2004-June/015806.html
Haven't tried it but I think that it fixes the problem introduced between
2.6.6-rc1 and 2.6.6-rc2.
/Andreas
|
|
|