sorry for top-posting, but I give up.
Or, my english is not good enough, or you succeed in answering
clear questions with misty and foggy answers.

On 2007-11-19 04:34, fedora wrote:

Relabeling erases the tape, indeed.  But why relabel it? Do you mean
that you keep inserting the same tape over and over again until that one
client succeeds?

keep inserting for each dump to different tapes

I don't understand your answer.

Why not first trouble that one client?
Make a diskist file with one small DLE from that client.
And while testing the firewall-issues with that client, you do not have
to insert a tape; just dump to holdingdisk.

How to dump to holdingdisk?

By reading the manual.
(e.g set "reserve 0" and leave out the tape.)

The reason why the images are not on the tape is worded in plain english
above.
Was there a tape in?

Yes got tapes.

Ok, you "got" them, but were they in the drive ?  :-)

Was it a tape that could be reused (older than tapecycle?)

Yes. it is reused as in tapelist.

Was it write protected?

Yes.

That's weird, because if it is write protected, than you
cannot write to it.

What did amcheck say about that tape before?

amcheck said no problem found

That's weird too, because amcheck would complain that the
tape is write protected,, at least if you try the "amcheck -w"
option (that you probably should do!).

How did you allow those? Did it suceeed? Let's see the commands, so that
we can verify them.   Does your firewall do port-NAT interfering with
the port ranges you specified?

on client's shorewall firewall:

ACCEPT  net:x.x.x.x         $FW     udp     10080
ACCEPT  net:x.x.x.x         $FW     tcp     -       50000:50100

whereby x.x.x.x is server

I dont have firewall on server but in front of server got pfsense firewall.
So in pfsense:

UDP      *       *       10.200.30.150           10080                          
   *                            
TCP     *       *       10.200.30.150            50000 - 50100                  
*

whereby 10.200.30.150 is amanda server (internal ip). It is mapping 1:1 from

external ip to internal ip.

But, as said above, much easier is to use bsdtcp which is much more
firewall friendly.

I think something wrong with my pfsense (not to say my rules doesnt work
because I can backup for other 10 servers). Weird, it could be connection
problem between my problem client and pfsense/sever. I had tried to route my
server to use another server as a gateway instead of using pfsense. I can
backup successfully. I will try on bsdtcp if that is alternative solutions.
Thanks in advanced.

ok, try that first.


--
Paul Bijnens, xplanation Technology Services        Tel  +32 16 397.511
Technologielaan 21 bus 2, B-3001 Leuven, BELGIUM    Fax  +32 16 397.512
http://www.xplanation.com/          email:  Paul.Bijnens AT xplanation DOT com
***********************************************************************
* I think I've got the hang of it now:  exit, ^D, ^C, ^\, ^Z, ^Q, ^^, *
* F6, quit, ZZ, :q, :q!, M-Z, ^X^C, logoff, logout, close, bye, /bye, *
* stop, end, F3, ~., ^]c, +++ ATH, disconnect, halt,  abort,  hangup, *
* PF4, F20, ^X^X, :D::D, KJOB, F14-f-e, F8-e,  kill -1 $$,  shutdown, *
* init 0, kill -9 1, Alt-F4, Ctrl-Alt-Del, AltGr-NumLock, Stop-A, ... *
* ...  "Are you sure?"  ...   YES   ...   Phew ...   I'm out          *
***********************************************************************