Hi Matt;
Assuming your Solaris 10 nsrserverhost and storage nodes are on one side of the
firewall and
the client(s) are on the other (which is what I'm familiar with)... AND NEITHER
SIDE IS A DMZ!!!
I have our Network Services group set up the firewall to:
1) allow my nsrserverhost to initiate connections on tcp 7937-7940 and udp 7938
2) all traffic from the client is allowed to pass out through the firewall
Then, the real challenge is to get the administrators for the clients to run
nsrports to limit
the service ports to 7937-7940. They have to run the command "nsrports -S
7939-7940" (yes,
really, 7939 to get 7937.... since you are setting up v7.5, that will be
critical.
After nsrports is run, networker needs to be restarted on the client.
Frank
On 9/7/10 10:53 AM, Matthew Powell wrote:
> I am in the process of setting up a Solaris 10 server running Legato
> Networker 7.5 SP3. I have been asked to get the software to work through the
> firewall. What ports should I enable so that we can run the firewall? Any
> help would be most appreciated. Thanks for reading this and have a great day.
--
Frank Swasey | http://www.uvm.edu/~fcs
Sr Systems Administrator | Always remember: You are UNIQUE,
University of Vermont | just like everyone else.
"I am not young enough to know everything." - Oscar Wilde (1854-1900)
To sign off this list, send email to listserv AT listserv.temple DOT edu and
type "signoff networker" in the body of the email. Please write to
networker-request AT listserv.temple DOT edu if you have any problems with this
list. You can access the archives at
http://listserv.temple.edu/archives/networker.html or
via RSS at http://listserv.temple.edu/cgi-bin/wa?RSS&L=NETWORKER
|