Mateus Interciso napsal(a): > On Tue, 23 Oct 2007 12:37:13 +0000, Mateus Interciso wrote: > >> On Mon, 22 Oct 2007 17:28:40 +0000, Mateus Interciso wrote: >> >>> On Mon, 22 Oct 2007 19:19:34 +0200, Radek Hladik wrote: >>> >>>> Mateus Interciso napsal(a): >>>>> On Mon, 22 Oct 2007 15:44:23 +0000, Mateus Interciso wrote: >>>>> >>>>>> On Mon, 22 Oct 2007 15:17:32 +0000, Mateus Interciso wrote: >>>>>> >>>>>>> On Fri, 19 Oct 2007 15:51:24 +0200, Viktor Radnai wrote: >>>>>>> >>>>>>>> Hi there, >>>>>>>> >>>>>>>> On 10/18/07, Arno Lehmann <[EMAIL PROTECTED]> wrote: >>>>>>>> >>>>>>>>> You can do this even if the SD is inside your firewall, you'll >>>>>>>>> need port forwarding or a proxy on the firewall then. With >>>>>>>>> separate DNS zones inside and outside, resolving the SD hostname >>>>>>>>> either as the internal or the external IP, this can be seamlessly >>>>>>>>> integrated with your internal Bacula setup. >>>>>>>>> >>>>>>>>> Arno >>>>>>>> I think in this case, /etc/hosts is your friend :-) >>>>>>>> >>>>>>>> Configure your storage daemon with a hostname, and specify that >>>>>>>> hostname in /etc/hosts to be either the internal or the external >>>>>>>> address, as required. And you don't need to return different >>>>>>>> results from your internal DNS server. Dead simple and works well. >>>>>>>> >>>>>>>> HTH, >>>>>>>> >>>>>>>> Cheers, >>>>>>>> Vik >>>>>>>> -- >>>>>>>> My other sig is hilarious >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> > ------------------------------------------------------------------------- >>>>>>>> This SF.net email is sponsored by: Splunk Inc. Still grepping >>>>>>>> through log files to find problems? Stop. Now Search log events >>>>>>>> and configuration files using AJAX and a browser. Download your >>>>>>>> FREE copy of Splunk now >> http://get.splunk.com/ >>>>>>> Ok, but how do I configure the storage daemon with a hostname? >>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>> > ------------------------------------------------------------------------- >>>>>>> This SF.net email is sponsored by: Splunk Inc. Still grepping >>>>>>> through log files to find problems? Stop. Now Search log events >>>>>>> and configuration files using AJAX and a browser. Download your >>>>>>> FREE copy of Splunk now >> http://get.splunk.com/ >>>>>> Sorry, I should have sayd more... >>>>>> when I try to put the Address config on the sd, like this: >>>>>> >>>>>> Storage { # definition of myself >>>>>> Name = test-sd >>>>>> Address = Storage-Server >>>>>> SDPort = 9103 # Director's port WorkingDirectory >>>>>> = "/var/lib/bacula" >>>>>> Pid Directory = "/var/run" >>>>>> Maximum Concurrent Jobs = 20 >>>>>> } >>>>>> >>>>>> I get this error when I start bacula-sd >>>>>> >>>>>> 22-Oct 14:11 bacula-sd: ERROR TERMINATION at parse_conf.c:889 Config >>>>>> error: Keyword "Address" not permitted in this resource. Perhaps you >>>>>> left the trailing brace off of the previous resource. >>>>>> : line 15, col 10 of file /etc/bacula/bacula-sd.conf >>>>>> Address = Storage-Server >>>>>> >>>>>> :( >>>>>> >>>>>> Mateus >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> > ------------------------------------------------------------------------- >>>>>> This SF.net email is sponsored by: Splunk Inc. Still grepping >>>>>> through log files to find problems? Stop. Now Search log events and >>>>>> configuration files using AJAX and a browser. Download your FREE >>>>>> copy of Splunk now >> http://get.splunk.com/ >>>>> I've just managed to make the backups run across the internet. I'm >>>>> really thankfull for all of you guys :d Fiddling a little with the >>>>> /etc/hosts and the firewall...it worked perfectly :D Now is just >>>>> making it secure...thanks a lot guys :D >>>>> >>>> I would suggest you OpenVPN. It is easy to setup, there is a lot of >>>> howtos on the net and it will solve all NAT problems. OpenVPN is for >>>> both Windows and Linux and all it needs is one port on public IP. We >>>> use it for backing up remote servers and it works like a charm. >>>> >>>> Basically you need to install OpenVPN server in your office and >>>> OpenVPN clients on all your clients. OpenVPN will create new >>>> "ethernet" devices which are connected all together. You then setup >>>> some private IPs on this virtual network and use them in bacula >>>> configuration. >>>> >>>> Radek >>>> >>>> >>>> > ------------------------------------------------------------------------- >>>> This SF.net email is sponsored by: Splunk Inc. Still grepping through >>>> log files to find problems? Stop. Now Search log events and >>>> configuration files using AJAX and a browser. Download your FREE copy >>>> of Splunk now >> http://get.splunk.com/ >>> >>> Interesting...I'll take a look at it...thanks a lot once again. :D >>> >>> Mateus >>> >>> >>> > ------------------------------------------------------------------------- >>> This SF.net email is sponsored by: Splunk Inc. Still grepping through >>> log files to find problems? Stop. Now Search log events and >>> configuration files using AJAX and a browser. Download your FREE copy >>> of Splunk now >> http://get.splunk.com/ >> Hum...it seems that not everything is perfect tough... >> >From one server, there's no problem backing up, but from another, which >> has a lot of traffic, is basically impossible to back up, since I got >> every time a big Broken Pipe.... >> any help is apreciated... >> >> Thanks a lot >> >> MAteus >> >> >> > ------------------------------------------------------------------------- >> This SF.net email is sponsored by: Splunk Inc. Still grepping through >> log files to find problems? Stop. Now Search log events and >> configuration files using AJAX and a browser. Download your FREE copy of >> Splunk now >> http://get.splunk.com/ > > Also, is there a way to create a OpenVPN tunnel with two diferent ip > networks? > For instance...let's say the internal network I'm working has the ip > 192.168.1.15 as my client, and the serve I wan to access has the ip > 10.0.0.7, is there a way to create a tunnel between those two? I was > reading the OpenVPN manual...and they don't let it that clear. > > Thanks. > > Mateus. >
Short answer: Different real networks does not matter. All you need is that client can reach server via internet. OpenVPN will create new virtual interfaces (i.e. tun0) on both server and client and will transport all traffic between these two interfaces through that "normal internet" connection. You need to set up completely different IP addresses on these two virtual interfaces and use them in bacula config. Long answer Server has ip 192.168.1.15 and internet gateway 192.168.1.1. Client has IP 10.0.0.7 and gateway 10.0.0.7. You will assign IPs 192.168.10.1 to the virtual server interface and 192.168.10.2 to the client virtual interface. Bacula director will try to contact client on IP 192.168.10.2. This packet will arrive to tun0 virtual interface, OpenVPN will "catch" the packet, encrypt it, encapsulate it and send it via internet to 10.0.0.7. This "real" packet will traverse normally via 192.168.1.1-internet-10.0.0.1 to OpenVPN daemon on client. Client's OpenVPN daemon will receive encapsulated packet, decrypt it and put it on the virtual tun0 adapter on the client. Kernel on client machine will take the decrypted packet as it came from ethernet cable and route it normally to bacula client. The whole magic is that all encryption/NAT problems/etc.. are solved for one "normal" UDP connection between the client and server. Once this connection is established OpenVPN uses it to create virtual connection between all the virtual adapters and you can use it as these interfaces would be connected via cable. Radek ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users