RE: Unable to backup clients
2004-01-13 12:14:29
Mike:
The
Amanda entries in /etc/services are unchanged from the stock Amanda
settings.
#
AMANDA (Advanced Maryland Automated Network Disk Archiver) # # Amanda 2.2
service # amanda
10080/udp amandaidx
10082/tcp amidxtape
10083/tcp
What
changes with the portrange and udpportrange are the unadvertised and random
ports that Amanda uses to perform the work of backup and recovery. The
Amanda UDP port on 10080 is (apparently) used for job control and reporting
between amanda servers and clients. The actual backup is done on three TCP
ports allocated to each backup task (for standard-in, standard-out, and
standard-error connects from the server to the client).
You
will need firewall ports opened for all three Amanda ports, but the Amanda 10080
port must be open from the server to the clients for initiating and controlling
backups. The other two must be open from the clients to the server, since
they are used by the clients to request an amrecover or amrestore
session.
Good
luck and best wishes,
Don
Donald L. (Don) Ritchey E-mail: Donald.Ritchey AT exeloncorp DOT com
Don, I'll give that a try, thanks.
I'm recompiling the server and clients as I write this.
Can you tell me
what your /etc/services looks like for the amanda
services?
Thanks, Mike
donald.ritchey AT exeloncorp DOT com
wrote:
Mike:
There may be a bit of misunderstanding here. The TCP ports may be in the
unprivileged range, since the ones we use here are 50000-50040. We do have
the UDP ports in the range of 890-899. See if you can try a different range
on TCP ports and, if possible, allocate a larger range of ports (since
Amanda will reuse them, but cannot use more than the port range at one
time).
Our options to the configure are:
--with-portrange=50000,50040 --with-udpportrange=890,899
Best of luck,
Don
Donald L. (Don) Ritchey
E-mail: Donald.Ritchey AT exeloncorp DOT com
-----Original Message-----
From: Mike Heller [mailto:mike AT dsny DOT com]
Sent: Monday, January 12, 2004 3:58 PM
To: amanda-users AT amanda DOT org
Subject: Re: Unable to backup clients
Jon LaBadie wrote:
On Mon, Jan 12, 2004 at 11:32:22AM -0800, Mike Heller wrote:
I fixed the problem of the "high server load" by installing amanda
version 2.4.4p1 on the server and the clients.
...
But the backups fail. Checking the logs in /tmp/amanda (on the
clients), I see things like:
sendbackup: time 0.000: stream_server: waiting for connection:
0.0.0.0.33011
sendbackup: time 0.001: stream_server: waiting for connection:
0.0.0.0.33012
sendbackup: time 0.001: stream_server: waiting for connection:
0.0.0.0.33013
sendbackup: time 0.001: waiting for connect on 33011, then 33012, then
33013
sendbackup: time 29.991: stream_accept: timeout after 30 seconds
sendbackup: time 29.991: timeout on data port 33011
sendbackup: time 59.991: stream_accept: timeout after 30 seconds
sendbackup: time 59.991: timeout on mesg port 33012
sendbackup: time 89.991: stream_accept: timeout after 30 seconds
sendbackup: time 89.991: timeout on index port 33013
sendbackup: time 89.991: pid 1873 finish time Thu Jan 8 01:05:15 2004
All hosts were configured with:
--with-tcpportrange=850,854 --with-udpportrange=850,854
So why am I getting connections on port 33011? I have 850-854 opened on
the firewall, but if it's trying to connect on 33xxx then of course it's
not going to work.
Note, I'm speaking from a position of ZERO experience on this:
>From the PORT.USAGE document:
Pick the max of (2 * inparallel) and (3 * largest maxdumps).
Allocate at least that many ports in the unprivileged
(1024 or larger) range.
Three questions:
Did you allocate sufficient number of ports?
Looking at that, I don't think so. I have inparallel=4, and I have no
maxdumps set so the default is 1. I can reduce the inparallel number to
see if that makes a difference. Currently I have ports 850-854, which
is only 5
Are they in the unprivileged range?
No, they are not, but that seems to contradict the Amanda FAQ which is
what I followed.
http://amanda.sourceforge.net/fom-serve/cache/139.html
/You must pick ports under 1024 or amanda will complain of "insecure
ports used" those ports should of course not conflict with other
services listed in /etc/services. ( I suggest 850-854 or 859)/
Is the proper syntax for the option ...=N1,N2 or ...=N1-N2?
--with-tcpportrange=low,high bind unreserved TCP server sockets to
ports within this range unlimited
--with-udpportrange=low,high bind reserved UDP server sockets to ports
within this range unlimited
So the command I used --with-tcpportrange=850,854 should be correct.
Mike
************************************************************************
This e-mail and any of its attachments may contain Exelon Corporation
proprietary information, which is privileged, confidential, or subject
to copyright belonging to the Exelon Corporation family of Companies.
This e-mail is intended solely for the use of the individual or entity
to which it is addressed. If you are not the intended recipient of this
e-mail, you are hereby notified that any dissemination, distribution,
copying, or action taken in relation to the contents of and attachments
to this e-mail is strictly prohibited and may be unlawful. If you have
received this e-mail in error, please notify the sender immediately and
permanently delete the original and any copy of this e-mail and any
printout. Thank You.
************************************************************************
--
_________________________________________________
|
|
|
|