Hej Jan,

Please remember to restart the networker client when you change the port 
settings. Do a nsr_shutdown followed by /etc/init.d/networker start on the 
client.

When I open firewalls for NW, I always consider that every client needs at 
least 4 ports to be able to communicate with the server. If you do a nsrports 
on the server, it tells you what service port range it uses. If you open this 
range in your firewall, it WILL work. (unless something else is wrong). You can 
also reduce and change the range with the command:

nsrports -s servername -S portrange  ( i.e. nsrports -s gonzo -S 7937-8937  
will make the server use 100 ports for its service.)
Remember to restart NW to make the changes active.

So, if you have more than one client on the outside, you will need more than 4 
ports opened.

My advice to you is to open enough ports in the firewall, start with 20 ports 
or so, starting with 7937.

Then, make sure that the client has been restarted and try to connect to it 
from the server:

nsradmin -p nsrexec -s clientname

That should give you a nsradmin command prompt. Type q to quit.

Next, try to run a probe from the server:

savegrp -vpnc clientname groupname  (i.e. if the client is called benny, and 
the backup group is egon, the command would be:
savegrp -vpnc benny egon

That probe should tell you something about what file systems it would back up 
and their sizes etc. It will not run a backup, just try to see if it will work.

/tony


Tony Albers  - Technical Consultant  -  Proact Systems A/S
Tel: +45 7010 1132 - Mobile: +45 2210 5208 - Fax: +45 7010 1142
toal AT proact DOT dk  www.proact.dk - We secure mission-critical information -