Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Port xxx is not secure

2008-08-07 07:41:14
Subject: Re: Port xxx is not secure
From: Nouveaux Territoires <listes AT nouveauxterritoires DOT fr>
To: Marc Muehlfeld <Marc.Muehlfeld AT medizinische-genetik DOT de>, "Amanda user's group" <amanda-users AT amanda DOT org>
Date: Thu, 7 Aug 2008 13:36:15 +0200 
I opened a PPTP tunnel with my firewall.

When i run amcheck on my server, i have already this error :


Amanda Backup Client Hosts Check
--------------------------------
ERROR: NAK globtrans: host backup: port 51059 not secure
Client check: 1 host checked in 0.117 seconds, 1 problem found
But with the openned tunnel , i don't need to open one or more ports on the firewall. 

Then, why yhis error is already here ?


thanks,


Le 7 août 08 à 12:40, Nouveaux Territoires a écrit :


Hello,

I compiled my amanda client with these arguments :
./configure --with-user=amanda -with-group=disk -with- config=globtrans -without-server -prefix=/usr/local/amanda -with- amandahosts --with-tcpportrange=50000,50100 --with- udpportrange=512,1023 


My client is a Fedora linux.

My server is an other fedora linux.

Between the computers, i have a fortiget firewall.

when i execute amcheck, i have already this error.

Amanda Backup Client Hosts Check
--------------------------------
ERROR: NAK globtrans: host backup: port 49941 not secure
Client check: 1 host checked in 0.139 seconds, 1 problem found

(brought to you by Amanda 2.5.1p3)

He find a port 49941 then the comilation argument is different why ?


The port on my firewall opened (10080).

What is this error exactly ?

thanks

Julien


Le 7 août 08 à 11:51, Marc Muehlfeld a écrit :


Nouveaux Territoires schrieb:

I want to save data from an another computer behind a firewall.
The corresponding ports opened on the firewall.
But when i launch amcheck,i have an error :
Amanda Backup Client Hosts Check
--------------------------------
ERROR: NAK globtrans: host backup: port 48226 not secure
Client check: 1 host checked in 0.318 seconds, 1 problem found
I guess you configured the amanda.conf parameters reserved-udp-port and reserved-tcp-port with ports above 1024. Or you compiled the default in with 
--with-udpportrange and --with-low-tcpportrange.

E. g. try setting
reserved-udp-port 512,1023
reserved-tcp-port 512,1023
For your firewall you only have to allow connections to dport 10080. All other ports are handled automatically by the nf_conntrack_amanda module (if you use 
iptables).


Regards
Marc


--
Marc Muehlfeld (Leitung IT)
Zentrum fuer Humangenetik und Laboratoriumsmedizin Dr. Klein und Dr. Rost 
Lochhamer Str. 29 - D-82152 Martinsried
Telefon: +49(0)89/895578-0 - Fax: +49(0)89/895578-78
http://www.medizinische-genetik.de
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: problem with amflush?, Andre Brandt
Next by Date:  Re: problem with amflush?, Chris Hoogendyk
Previous by Thread:  Re: Port xxx is not secure, Nouveaux Territoires
Next by Thread:  Re: Port xxx is not secure, Dustin J. Mitchell
Indexes:  [Date] [Thread] [Top] [All Lists]