I've read the manual concerning firewalls and nsrports. But there's
something
that I can't find the answer to and haven't read it. We are running
7.4.4 and we
have a server with jukebox and two networked storage nodes. The
firewall config gives
us a metric for counting the necessary ports both servers and storage
nodes.
For us, I came up with 38. And I can tell our neteng people to open up
38 ports
from clients to server. But what firewall rules are needed for the
storage nodes?
I don't actually know what the network scheme is for clients backing up
to storage
nodes: Is it direct, or via the server. If it's direct, do I also
need to open the
same 38 ports between client and storage node? If not, what /do/ we
open between
client and storage node.
If anyone out there has clients in a VDMZ (what we're really talking
about) and
servers and storage nodes in the corporate network, would you be willing to
share your nsrports settings nad firewall (or IPTABLES) settings.
I feel like I've been trying to solve this for a long time. Someone
else must have
bumped into these things.
m
--
=============================================================
Matthew Temple Tel: 617/632-2597
Director, Research Computing Fax: 617/582-7820
Dana-Farber Cancer Institute mht AT research.dfci.harvard DOT edu
44 Binney Street, LW/250 http://research.dfci.harvard.edu
Boston, MA 02115 Choice is the Choice!
To sign off this list, send email to listserv AT listserv.temple DOT edu and
type "signoff networker" in the body of the email. Please write to
networker-request AT listserv.temple DOT edu if you have any problems with this
list. You can access the archives at
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
|