Hello,
More info about this "problem". If I active the log in the firewall then
I get the following drop packets:
2010-07-06 12:40:54 DROP TCP 127.0.0.20 127.0.0.10 50966 8375 52 S
3064478961 0 65535 - - - RECEIVE
The firewall in the server is blocking the packet directed to port 8375.
I do a 'netstat -ano' and I get the PID for the process that owns this
port and is 'nsrmmgd.exe'.
But, the rules created by NetWorker installation doesn't have an entry
for this process only: nsrexec.exe, nsrindexd.exe, nsrjodbd.exe,
nsrmmd.exe, nsrmmdbd.exe, nsrexecd.exe, nsrd.exe.
Is this correct? Must we add a rule for nsrmmgd.exe?
Note that in the Storage Node I get drop packets from the networker
server directed to ports 9776 and 9100, but there aren't any process
waiting on these ports.
Any idea would be very appreciated.
Thank you.
Manel Rodero wrote:
Hello,
I'm trying this:
- Setup NetWorker Server in W2K8 with default firewall settings
- Setup NetWorker Client in W2K8 with default firewall settings
Do a backup and it works OK (the rules in W2K8 firewall aren't
restrictive).
Second test:
- Setup NetWorker Storage Node in W2K8 with default firewall settings
- Define the storage node and the library
it seems to work but ... the library isn't in READY state (i.e. we can't
use inventory or other operations with it).
Final test:
- Stop Windows firewall in Server and Storage Node
and voilà ... the library comes READY (the green check mark) and we can
inventory tapes on it.
Why? Aren't the rules created by NetWorker setup enough for the storage
node and library operation?
We have try to create an in/out rule to allow all traffic between server
and storage node without success. Only when we stop the firewall, the
library is in ready state.
Any idea?
Thanks.
--
Manel Rodero Blánquez
o o o IT Systems Manager
o o o Laboratori de Càlcul
o o o Facultat d'Informàtica de Barcelona
U P C Universitat Politècnica de Catalunya - Barcelona Tech
E-mail : manel AT fib.upc DOT edu
Tel. : +34 93 401 0847
Web : http://www.fib.upc.edu/
======================================================================
Abans d'imprimir aquest missatge, si us plau, assegureu-vos que sigui
necessari. El medi ambient és cosa de tots.
--[ http://www.fib.upc.edu/disclaimer/ ]------------------------------
ADVERTIMENT / TEXT LEGAL: Aquest missatge pot contenir informació
confidencial o legalment protegida i està exclusivament adreçat a la
persona o entitat destinatària. Si vosté no es el destinatari final o
persona encarregada de recollir-lo, no està autoritzat a llegir-lo,
retenir-lo, modificar-lo, distribuir-lo, copiar-lo ni a revelar el seu
contingut. Si ha rebut aquest correu electrònic per error, li preguem
que informi al remitent i elimini del seu sistema el missatge i el
material annex que pugui contenir. Gràcies per la seva col·laboració.
To sign off this list, send email to listserv AT listserv.temple DOT edu and type
"signoff networker" in the body of the email. Please write to networker-request
AT listserv.temple DOT edu if you have any problems with this list. You can access the
archives at http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
|