Networker

Re: [Networker] NetWorker security

2003-03-03 12:22:23
Subject: Re: [Networker] NetWorker security
From: Lilian Feng <lilian.feng AT STORAGEASP DOT NET>
To: NETWORKER AT LISTMAIL.TEMPLE DOT EDU
Date: Mon, 3 Mar 2003 12:17:05 -0500
Chris, 
Thank you for your advices. 
We have tried many times to monitor the traffic on the TCP/UDP ports. What we 
found was that the ports used by nwadmin are mixed up the backup ports. When we 
blocked the ports in the NetWorker server used to respond nwadmin,  we found it 
also blocked the backup traffic from clients.
Lilian Feng


 -----Original Message-----
From:   Chris Madden [mailto:maddenca AT myrealbox DOT com] 
Sent:   Monday, March 03, 2003 7:50 AM
To:     Dag Nygren; Lilian Feng
Subject:        Re: [Networker] NetWorker security

I haven't ever investigated this but perhaps you could simply block all
non-localhost traffic on the TCP/UDP ports that nwadmin uses by using a
packet filtering driver at the backup server.  I think Windows 2k has this
functionality built-in and on the unix side something like ipfilter might be
applicable.

Just some thoughts on a potential path to follow...

Good luck,
-Chris


----- Original Message -----
From: "Dag Nygren" <dag AT NEWTECH DOT FI>
To: <NETWORKER AT LISTMAIL.TEMPLE DOT EDU>
Sent: Monday, March 03, 2003 6:25 AM
Subject: Re: [Networker] NetWorker security


lilian.feng AT STORAGEASP DOT NET said:
> Have any one tried to block the Networker clients from using the
> nwadmin program to browse the server setting?

Cannot be done at the moment, rumour has it that Version 7
will address this.

Best



--
Dag Nygren                               email: dag AT newtech DOT fi
Oy Espoon NewTech Ab                     phone: +358 9 8024910
Träsktorpet 3                              fax: +358 9 8024916
02360 ESBO                              Mobile: +358 400 426312
FINLAND

--
Note: To sign off this list, send a "signoff networker" command via email
to listserv AT listmail.temple DOT edu or visit the list's Web site at
http://listmail.temple.edu/archives/networker.html where you can
also view and post messages to the list.
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=

--
Note: To sign off this list, send a "signoff networker" command via email
to listserv AT listmail.temple DOT edu or visit the list's Web site at
http://listmail.temple.edu/archives/networker.html where you can
also view and post messages to the list.
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=

<Prev in Thread] Current Thread [Next in Thread>