Hello,
Finally I've got it working.
1st step) limit the number of ports in the client using 'nsrports'. In
my case, the 4 minimum ports:
nsrports -S 7937-7940
2nd step) add the following forwarding rules in the NAT:
TCP 7937
TCP 7938
TCP 7939
TCP 7940
UDP 7938 (lgtomapper)
TCP 514 (Shell Connection/mapper)
TCP 111 (mapper)
UDP 111 (mapper)
Note that I'm not sure if 111 is necessary because I suppose that in new
versions 514 is used instead but I've added it to the NAT.
3rd step) ensure client firewall allows the IP address of the server
4th step) ensure server firewall allows the IP address of the client (in
our case, the external address of the NAT for this VM and the external
address of the NAT for the cloud)
5th step) define the client using the wizard, all works OK! I can define
it, browse the filesystem for selecting, etc.
6th step) need for backup, allow the external address of the NAT for the
cloud in the remote section of the client definition (this is a
requirement because in this cloud environment all the VM go out through
a common virtual interface).
And now it works ;-)
Hope it helps to someone.
See you.
El 16/05/2012 9:32, Manel Rodero Blanquez escribió:
Hello,
I need to backup a client that is outside our office. This client is VM
running in a cloud environment.
This machine access the network through NAT and in the GUI interface
where I can add port forwarding rules doesn't accept ranges. So I've
tried to define a range for service ports in the client using 'nsrports'
like this:
nsrports -S 7937-7940
and opening the following ports in the port forwarding section of this NAT:
7937 TCP
7938 TCP
7939 TCP
7940 TCP
7938 UDP
541 UDP
After this, I can start the "Client Backup Configuration" wizard and it
contact properly the client (i.e. the Client OS and version appears and
I see the Filesystem application).
But when I click "Next" for specifying "Client Backup Options" I get a
progress bar "Starting operation..." that does not finish. At the end I
get the error: Unable to connect to host: Please check NetWorker
Security setting and daemon logs on the NetWorker client and Console
server for more details.
I can contact the client from the server using the command:
nsradmin -s cliente_name -p 390113
So at this moment I'm trying to know which are the minimum ports
requirements for contacting and backing up this client knowing that
probably some firewalls can stop this operation (i.e. client/server
firewall and firewall for the subnet where the server is located).
Any tip about what could be the failure point would be very appreciated.
Thank you.
--
Manel Rodero Blánquez
o o o IT Systems Manager
o o o inLab FIB
o o o Barcelona School of Informatics
U P C Universitat Politècnica de Catalunya - Barcelona Tech
E-mail : manel AT fib.upc DOT edu
Tel. : +34 93 401 0847
Web : http://inlab.fib.upc.edu/
======================================================================
Abans d'imprimir aquest missatge, si us plau, assegureu-vos que sigui
necessari. El medi ambient és cosa de tots.
--[ http://www.fib.upc.edu/disclaimer/ ]------------------------------
ADVERTIMENT / TEXT LEGAL: Aquest missatge pot contenir informació
confidencial o legalment protegida i està exclusivament adreçat a la
persona o entitat destinatària. Si vosté no es el destinatari final o
persona encarregada de recollir-lo, no està autoritzat a llegir-lo,
retenir-lo, modificar-lo, distribuir-lo, copiar-lo ni a revelar el seu
contingut. Si ha rebut aquest correu electrònic per error, li preguem
que informi al remitent i elimini del seu sistema el missatge i el
material annex que pugui contenir. Gràcies per la seva col·laboració.
|