On 1/4/12 12:32 PM, Lagerstars wrote:
> I'm about to start playing with the connection port values as we have a 
> phyical firewall between some clients, so the comments about ignoring 
> connections ports isnt true.
>
> Has anyone narrowed down the requirements or know roughly how they are used 
> to calculate this to save me some time with testing?
> Thanks in advance
>

In my opinion from what you have stated, your "phyical" firewall is defective.

I have firewalls between many of my clients and my NetWorker server and storage 
nodes.  I have
my customers configure their clients to force the to use server ports 7937-7940 
(still only
need four on the client side) tcp and 7938 udp, and the firewalls are 
configured to allow my
NetWorker server to connect to those ports.  The way NetWorker winds up 
working, the client
initiates the connection to the storage node(s) required, so everything that 
happens after the
backup is initiated is covered by the "ESTABLISHED, RELATED" category which 
every firewall
should have.

-- 
Frank Swasey                    | http://www.uvm.edu/~fcs
Sr Systems Administrator        | Always remember: You are UNIQUE,
University of Vermont           |    just like everyone else.
  "I am not young enough to know everything." - Oscar Wilde (1854-1900)

To sign off this list, send email to listserv AT listserv.temple DOT edu and 
type "signoff networker" in the body of the email. Please write to 
networker-request AT listserv.temple DOT edu if you have any problems with this 
list. You can access the archives at 
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER