Re: Unable to backup clients
2004-01-12 16:57:23
Jon LaBadie wrote:
On Mon, Jan 12, 2004 at 11:32:22AM -0800, Mike Heller wrote:
I fixed the problem of the "high server load" by installing amanda
version 2.4.4p1 on the server and the clients.
...
But the backups fail. Checking the logs in /tmp/amanda (on the
clients), I see things like:
sendbackup: time 0.000: stream_server: waiting for connection: 0.0.0.0.33011
sendbackup: time 0.001: stream_server: waiting for connection: 0.0.0.0.33012
sendbackup: time 0.001: stream_server: waiting for connection: 0.0.0.0.33013
sendbackup: time 0.001: waiting for connect on 33011, then 33012, then 33013
sendbackup: time 29.991: stream_accept: timeout after 30 seconds
sendbackup: time 29.991: timeout on data port 33011
sendbackup: time 59.991: stream_accept: timeout after 30 seconds
sendbackup: time 59.991: timeout on mesg port 33012
sendbackup: time 89.991: stream_accept: timeout after 30 seconds
sendbackup: time 89.991: timeout on index port 33013
sendbackup: time 89.991: pid 1873 finish time Thu Jan 8 01:05:15 2004
All hosts were configured with:
--with-tcpportrange=850,854 --with-udpportrange=850,854
So why am I getting connections on port 33011? I have 850-854 opened on
the firewall, but if it's trying to connect on 33xxx then of course it's
not going to work.
Note, I'm speaking from a position of ZERO experience on this:
From the PORT.USAGE document:
Pick the max of (2 * inparallel) and (3 * largest maxdumps).
Allocate at least that many ports in the unprivileged
(1024 or larger) range.
Three questions:
Did you allocate sufficient number of ports?
Looking at that, I don't think so. I have inparallel=4, and I have no
maxdumps set so the default is 1. I can reduce the inparallel number to
see if that makes a difference. Currently I have ports 850-854, which
is only 5
Are they in the unprivileged range?
No, they are not, but that seems to contradict the Amanda FAQ which is
what I followed.
http://amanda.sourceforge.net/fom-serve/cache/139.html
/You must pick ports under 1024 or amanda will complain of "insecure
ports used" those ports should of course not conflict with other
services listed in /etc/services. ( I suggest 850-854 or 859)/
Is the proper syntax for the option ...=N1,N2 or ...=N1-N2?
--with-tcpportrange=low,high bind unreserved TCP server sockets to
ports within this range unlimited
--with-udpportrange=low,high bind reserved UDP server sockets to ports
within this range unlimited
So the command I used --with-tcpportrange=850,854 should be correct.
Mike
|
|
|