I'm aware of the security WTF implicit in this question... again, out of my control. I'm allowed to do certain configurations but not others.
A dedicated network for backups was previously deemed to be an unacceptable security risk. I don't know why, that's just the way it is.
So I'm stuck doing what I can within the bounds of what I'm permitted to hook up and where and how. (I also can't get VLAN-tagged switch ports, for example; one NIC per network is de rigeur.)
Right now, I'm adding a private IP to lo:0 (this is RHEL 6.4) and on each (all RHEL, various versions) host adding two static routes to that IP via /etc/sysconfig/static-routes. Ugly, but so far it does work. Only works because I have access to manipulate the routing tables on my own servers, though...
-Adam
>>>
From:
|
Adrian Reyer <bacula-lists AT lihas DOT de>
|
To:
|
Adam Thompson <ad.thompson AT uwinnipeg DOT ca>
|
CC:
|
<bacula-users AT lists.sourceforge DOT net>
|
Date:
|
2013-18-02 16:18
|
Subject:
|
Re: [Bacula-users] multi-homed SD & single-homed FDs
|
On Thu, May 02, 2013 at 02:21:15PM -0500, Adam Thompson wrote > I'm trying to setup a multi-homed DIR + SD to service two different VLANs that are firewalled from each other.
They are not firewalled anymore if you add a dualhomed host. Why not backup from a third vlan that is firewalled against the other two to only accespt the neccessary backup traffic?
Regards, Adrian -- LiHAS - Adrian Reyer - Hessenwiesenstraße 10 - D-70565 Stuttgart Fon: +49 (7 11) 78 28 50 90 - Fax: +49 (7 11) 78 28 50 91 Mail: lihas AT lihas DOT de - Web: http://lihas.de Linux, Netzwerke, Consulting & Support - USt-ID: DE 227 816 626 Stuttgart
|
|