Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure]

2006-02-21 08:39:49
Subject: Re: Still get ERROR [host fw.my.co.uk: port 62679 not secure]
From: Paul Bijnens <paul.bijnens AT xplanation DOT com>
To: chuck AT smtl.co DOT uk
Date: Tue, 21 Feb 2006 14:35:41 +0100 
On 2006-02-21 11:02, Chuck Amadi Systems Administrator wrote:


Here is the output from the server client debug I have since changed the
Estimate timeout parameter from 300 to " etimeout 380 " on my ~tape
server/amanda.conf Thus doubled the amandad: time 180.183: dgram_recv in
debug report.

amandad: time 0.000: got packet:
--------
Amanda 2.4 REQ HANDLE 003-30610808 SEQ 1140464706
SECURITY USER amanda
SERVICE sendsize
OPTIONS features=fffffeff9ffe0f;maxdumps=1;hostname=server.my.co.uk;
GNUTAR / 0 1970:1:1:0:0:0 -1 OPTIONS 
|;bsd-auth;index;exclude-list=/usr/local/lib/amanda/exclude.gtar;
--------

amandad: time 0.000: sending ack:
----
Amanda 2.4 ACK HANDLE 003-30610808 SEQ 1140464706
----
amandad: time 0.053: bsd security: remote host fw.my.co.uk user amanda local 
user amanda
amandad: time 0.053: amandahosts security check passed
amandad: time 0.053: running service "/usr/local/libexec/sendsize"
amandad: time 170.173: sending REP packet:
----
Amanda 2.4 REP HANDLE 003-30610808 SEQ 1140464706
OPTIONS features=fffffeff9ffe0f;
/ 0 SIZE 5006670
----

amandad: time 180.183: dgram_recv: timeout after 10 seconds


I think that is because the masquerading time for udp packets
in the ipchains firewall has been exceeded.
The first ACK did work, it is the one taking 170 seconds that
times out.

Change it by executing on the firewall:

   ipchains -M -S tcp tcpfin udp

Filling in 0 means "do not change the value":

   ipchains -M -S 0 0 300

(I did not use ipchains since more than 4 or 5 years now, so take care
and read the man page again too.)

--
Paul Bijnens, xplanation Technology Services        Tel  +32 16 397.511
Technologielaan 21 bus 2, B-3001 Leuven, BELGIUM    Fax  +32 16 397.512
http://www.xplanation.com/          email:  Paul.Bijnens AT xplanation DOT com
***********************************************************************
* I think I've got the hang of it now:  exit, ^D, ^C, ^\, ^Z, ^Q, ^^, *
* F6, quit, ZZ, :q, :q!, M-Z, ^X^C, logoff, logout, close, bye, /bye, *
* stop, end, F3, ~., ^]c, +++ ATH, disconnect, halt,  abort,  hangup, *
* PF4, F20, ^X^X, :D::D, KJOB, F14-f-e, F8-e,  kill -1 $$,  shutdown, *
* init 0, kill -9 1, Alt-F4, Ctrl-Alt-Del, AltGr-NumLock, Stop-A, ... *
* ...  "Are you sure?"  ...   YES   ...   Phew ...   I'm out          *
***********************************************************************
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: request failed: timeout waiting for ACK, Chuck Amadi Systems Administrator
Next by Date:  Re: request failed: timeout waiting for ACK, Jon LaBadie
Previous by Thread:  Re: Self check failing, Kevin Till
Next by Thread:  gzip trailing garbage, Greg Troxel
Indexes:  [Date] [Thread] [Top] [All Lists]