On 1/4/12 12:32 PM, Lagerstars wrote:
> I'm about to start playing with the connection port values as we have a
> phyical firewall between some clients, so the comments about ignoring
> connections ports isnt true.
>
> Has anyone narrowed down the requirements or know roughly how they are used
> to calculate this to save me some time with testing?
> Thanks in advance
>
In my opinion from what you have stated, your "phyical" firewall is defective.
I have firewalls between many of my clients and my NetWorker server and storage
nodes. I have
my customers configure their clients to force the to use server ports 7937-7940
(still only
need four on the client side) tcp and 7938 udp, and the firewalls are
configured to allow my
NetWorker server to connect to those ports. The way NetWorker winds up
working, the client
initiates the connection to the storage node(s) required, so everything that
happens after the
backup is initiated is covered by the "ESTABLISHED, RELATED" category which
every firewall
should have.
--
Frank Swasey | http://www.uvm.edu/~fcs
Sr Systems Administrator | Always remember: You are UNIQUE,
University of Vermont | just like everyone else.
"I am not young enough to know everything." - Oscar Wilde (1854-1900)
To sign off this list, send email to listserv AT listserv.temple DOT edu and
type "signoff networker" in the body of the email. Please write to
networker-request AT listserv.temple DOT edu if you have any problems with this
list. You can access the archives at
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
|