On Tue, Oct 25, 2005 at 05:54:34PM -0600, Cameron Matheson wrote:
> Hi guys,
> 
> I just compiled a version of amanda w/ '--tcpportrange 10080,10180 and'
> '--udpportrange 10080,10180'.  Unfortunately it does not seem to have worked.
> I get the error:
> 
> ERROR: zena.tonservices.com: [host godzilla.tonservices.com: port 10129 \
> not secure]
> 
> (this is repeated for all hosts).
> 
> I read the portusage doc on the amanda website and thought it said that the
> way amanda worked was to first use the ports that i specified, and then fall
> back on a secure port, and then try any port.  Am I misunderstanding this?
> Can I get by w/ these ports or is there no way?
> 
> Thanks,
> Cameron Matheson
> 
> P.S. I realize that the udp is probably more optimally placed under 1024, but
> I don't have control over the corporate firewall.  I could try to get them
> to change that again if absolutele necessary... although it's quite a mess
> so if there is a way to get around that it would be lovely.


I've not set up port-ranges, but the document seems pretty emphatic
about the need for udp ports in the priveleged range.


                          ...       so a user UDP port range
    (--with-udpportrange) must specify privileged port numbers.

    A user UDP port range must allow for one port for each client that
    might be contacted at a time.    ...

    =================================================
    User UDP port range (--with-udpportrange) summary
    =================================================

    Allocate at least "inparallel" many ports in the privileged (1023 or
    smaller) range.  Stay away from other well known ports (e.g. in your
    /etc/services file) or account for their potential use by making the
    portrange larger.


-- 
Jon H. LaBadie                  jon AT jgcomp DOT com
 JG Computing
 4455 Province Line Road        (609) 252-0159
 Princeton, NJ  08540-4322      (609) 683-7220 (fax)