Amanda-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Port NNNN not secure (revisited)

2006-07-27 19:04:57
Subject: Re: Port NNNN not secure (revisited)
From: Kevin Till <kevin.till AT zmanda DOT com>
Date: Thu, 27 Jul 2006 14:56:23 -0700 
Mike Allen wrote:

Kevin Till wrote:


Mike Allen wrote:


Kevin Till wrote:


Mike Allen wrote:
try configure with "--with-tcpportrange=50000,50100 --with-udpportrange=512,1023 ..." and recompile. 

Open the corresponding ports in the firewall setup.
The reason udp port 34932 was tried because Amanda cannot find a reserved udp port that it can use. 




The following occurred while compiling with the values you suggested:
<snip>



Hi,
add "-with-tcpportrange=50000,50100 --with-udpportrange=512,1023" to whatever you have in your configure line. For example:
./configure --with-user=amandabackup --with-group=disk -with-tcpportrange=50000,50100 --with-udpportrange=512,1023 


Run configure again and make install.
After configuring both the ta;e server and the client with the suggested portranges above 
I got the  following:
14:46:02.501703 IP famrad.familyradio.org.47737 > familyserv.familyradio.org.amanda: UDP, length: 123 14:46:02.543577 IP familyserv.familyradio.org.amanda > famrad.familyradio.org.47737: UDP, length: 50 14:46:02.544603 IP familyserv.familyradio.org.amanda > famrad.familyradio.org.47737: UDP, length: 109 14:46:02.549035 IP famrad.familyradio.org.47737 > familyserv.familyradio.org.amanda: UDP, length: 50
Notice the reference to port 47737 which is outside the range(s) specified. I have a feeling I am doing 
something really stupid!

Any help will be greatly appreciated.
Is there a firewall in between? If it's iptables, you can tell by running "iptables -L". 

The page below could be helpful too.
http://wiki.zmanda.com/index.php/Configuration_with_iptables



Mike




Kevin:
A properly configured Juniper-Networks firewall made no difference. I have noticed something else that might have a bearing. The version of Amanda-server software is 2.5.0p2 and the client software 
is 2.4.5p1. (the latest FreeBSD ports versions).

Could this be the reason for this problem?


Possible, it's all depend how the FreeBSD Amanda client is configured.

On the client, do:
#amadmin config version |grep CONFIGURE_COMMAND
it will tell if the Amanda Client is configured with --with-tcpportrange --with-udpportrange or not. 


Hope this helps!

--
Thank you!
Kevin Till

Amanda documentation: http://wiki.zmanda.com
Amanda forums:        http://forums.zmanda.com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Incorrect bahaviour causes backup loss !!, Alan Pearson
Next by Date:  Re: Burning backup to dvd - Last word, Anne Wilson
Previous by Thread:  Re: Port NNNN not secure (revisited), Mike Allen
Next by Thread:  Re: Port NNNN not secure (revisited), Jon LaBadie
Indexes:  [Date] [Thread] [Top] [All Lists]