ANR0443W after Client update

Sunhillow

Sunhillow

ADSM.ORG Senior Member
Joined
Oct 27, 2003
Messages
406
Reaction score
16
Points
0
Location
Stuttgart, Germany
PREDATAR Control23

Hello altogether,

after updating most TSM clients to 81.114.000 there were lots of these warnings:
16.08.2022 12:39:53 ANR0443W Protocol error on session 613556 for node Unknown () - invalid "sessType" field found in "Negotiate" verb (offset 26).

In the meantime I updated the clients to 8.1.15.000, the warnings remain. So I think there is something new in the communication protocol. Fortunately all operations work like before!

Server version 8.1.15.000 has been released a few weeks ago, should I upgrade? Of better wait for the fitst fix?

Thanks for reading :)
 
PREDATAR Control23

Are there any errors in the dsmerrror.log around 16.08.2022 12:39:53 on that client?
What type of client is it? Just regular client for file backup, or a TDP?
 
PREDATAR Control23

I do not find anything peculiar in the client log files. In the server actlog, I cannot even find from which IP address the session has been initiated.
These are regular BA clients. Most sessions are being produced by MAGS backups of our Isilons.
 
PREDATAR Control23

Since the error message in the actlog doesn't show the node_name, likely because the error happens before it identifies itself to the server, maybe you can proceed by process of elimination. Look for nodes that failed or missed their backup schedules and check their logs.
 
PREDATAR Control23

In some client logs I found many GSkit errors, but their timestamps are not corresponding with the protocol errors on the server. Will have to investigate them too. They also appear on Linux clients, which were not updated.
16.08.2022 05:22:00 ANS1579E GSKit-Funktion gsk_secure_soc_init fehlgeschlagen mit 403: GSK_ERROR_NO_CERTIFICATE
 
PREDATAR Control23

16.08.2022 12:39:53 ANR0443W Protocol error on session 613556 for node Unknown () - invalid "sessType" field found in "Negotiate" verb (offset 26).
Click to expand...

From the message manual regarding ANR0443W.

"The server detects a protocol error on the specified session because an invalid field has been found in a verb sent from the client node."

Suspect an application, other than TSM, is trying to use a TSM reserve port.
No node name or session , that I have encounter, have been due to network port scanning the TSM Server port.

-Network port scan.
-ID the process that is attempting to use/access/probe/scan the port reserved for TSM
-Config the port monitoring/scan application to avoid probe/scan TSM ports


Good Luck,
Sias
 
Last edited:
You must log in or register to reply here.

PREDATAR - Protect your data against ransomware attacks

With ransomware attacks expected to affect one in three businesses over the next four years, it’s important to take proactive measures to strengthen your cyber resiliency.

PREDATAR - The Control23 Mini-Conference

Sponsor ADSM.ORG

If you are reading this, so are your potential customer. Advertise at ADSM.ORG right now.

Navigation Menu

Forums
   IBM TSM
   EMC Backup and Recovery
   Symantec NetBackup  
   SAN  
   NAS
   Platforms / OS
Mailing List Archives
   ADSM-L
User Groups

NordVPN 3 Months FREE

Help Support ADSM.ORG and Get NordVPN with 64% Off and 3 Months FREE.

NordVPN with 64% off + 3 months FREE

Forum statistics

Threads
31,930
Messages
135,253
Members
21,903
Latest member
torelinde
Top