Resolved!
Pretty simple, actually. I wasn't finding anything in Amanda's debug logs. But I found the clue in
auth.log. The connection was getting dropped, because the key, although correct, was not from a
permitted host. It then listed the name and address of the NAT as the source.
I'm using bsd auth everywhere in my environment, and I'm successfully backing
up machines on public IPs from my amanda server inside our NAT firewall.
I put the name/ip of the NAT firewall itself into my client's .amandahosts
file, not the name of the Amanda server. Theore
bsd auth will not works if the server is behind a NAT.
bsdtcp auth should works.
On 08/07/2014 05:46 PM, Debra S Baddorf wrote:
I’m at v3.3.3 on my server and have a couple of clients at 2.5.0p2. They
work fine, with auth=bsd. I haven’t tried auth=ssh.
Deb Baddorf
On Aug 7, 2014
ore I bang my head too much.
My new server with Amanda 3.3.6 is temporarily on a private address
inside our department NAT. I was just trying today to add a 2.5.3
client that is in another department on a public address. I can ssh to
it, and I am using auth=ssh. I've got the keys set up. O
t a reality check before I bang my head too much.
>
> My new server with Amanda 3.3.6 is temporarily on a private address inside
> our department NAT. I was just trying today to add a 2.5.3 client that is in
> another department on a public address. I can ssh to it, and I am using
> a
I've been having a bit of trouble adding a client today and just wanted to get a reality check
before I bang my head too much.
My new server with Amanda 3.3.6 is temporarily on a private address inside our department NAT. I was
just trying today to add a 2.5.3 client that is in an
On Tue, Jun 28, 2005 at 02:46:12PM -0500, Frank Smith wrote:
> --On Tuesday, June 28, 2005 15:09:42 -0400 Eric Dantan Rzewnicki <[EMAIL
> PROTECTED]> wrote:
> > As far as I can figure out there isn't a way for me to prevent the
> > source port from being masqueraded using ipchains. Please correct
--On Tuesday, June 28, 2005 15:09:42 -0400 Eric Dantan Rzewnicki <[EMAIL
PROTECTED]> wrote:
> As far as I can figure out there isn't a way for me to prevent the
> source port from being masqueraded using ipchains. Please correct me if
> I am wrong.
>
It's been so long since I used ipchains I coul
On Tue, Jun 28, 2005 at 04:30:17PM +0200, Stefan G. Weichinger wrote:
> Eric Dantan Rzewnicki wrote:
> >Is this entry in the FAQ a complete description of the network
> >interactions between amanda client and amanda server?
> >http://amanda.sourceforge.net/fom-serve/cache/139.html
> >I'm not relish
Eric Dantan Rzewnicki wrote:
Is this entry in the FAQ a complete description of the network
interactions between amanda client and amanda server?
http://amanda.sourceforge.net/fom-serve/cache/139.html
I'm not relishing the thought of working this out in ipchains ...
I'm pushing to (finally) mov
Is this entry in the FAQ a complete description of the network
interactions between amanda client and amanda server?
http://amanda.sourceforge.net/fom-serve/cache/139.html
I'm not relishing the thought of working this out in ipchains ...
I'm pushing to (finally) move to iptables. But, I may have
If you are indeed using iptables, look into the DNAT and SNAT
components...they are very useful for what you want to do. Amanda has a
more or less (if compiled that way) set range of ports used that is
fairly well documented. Used in conjunction with *NAT options it should
allow you to do
That would only allow connections back in, but that
assumes they can get back inwhich I don't think
they can given the NAT situation. Let me clarify:
Tape Server
10.100.100.x
|
firewall
nat all lab stuff out to public ip 9.x.x.x
|
Client to backup
Sees tape server as nated 9.
Jerry wrote:
Is amanda NAT friendly?
i.e. I have a tape server with a private ip address
(10.100.100.x) and I want to backup a server outside
of that space with a public ip. When the server
contacts the system with the public ip it gets nat'ed
to a different ip.
What I need to know
Is amanda NAT friendly?
i.e. I have a tape server with a private ip address
(10.100.100.x) and I want to backup a server outside
of that space with a public ip. When the server
contacts the system with the public ip it gets nat'ed
to a different ip.
What I need to know is if everything o
a firewall.
does amanda support NAT through a firewall or is there another possibility
for me
to backup these servers?
when amanda server starts a backup by crontab a connection to the servers
gets established on port 10080.
When the clients send their files back, will they use the same
netcat -v -l -p 932
listening on [any] 932 ...
connect to [172.16.2.7] from www.jhuccp.org [162.129.225.190] 35919
ddd
admin:~ #
Notice that NAT translates the IP address which www is sending to
(162.129.225.189) outside the firewall to 162.129.225.190, which is used
inside the firewall
netcat -v -l -p 932
listening on [any] 932 ...
connect to [172.16.2.7] from www.jhuccp.org [162.129.225.190] 35919
ddd
admin:~ #
Notice that NAT translates the IP address which www is sending to
(162.129.225.189) outside the firewall to 162.129.225.190, which is used
inside the firewall
netcat -v -l -p 932
listening on [any] 932 ...
connect to [172.16.2.7] from www.jhuccp.org [162.129.225.190] 35919
ddd
admin:~ #
Notice that NAT translates the IP address which www is sending to
(162.129.225.189) outside the firewall to 162.129.225.190, which is used
inside the firewall
netcat -v -l -p 932
listening on [any] 932 ...
connect to [172.16.2.7] from www.jhuccp.org [162.129.225.190] 35919
ddd
admin:~ #
Notice that NAT translates the IP address which www is sending to
(162.129.225.189) outside the firewall to 162.129.225.190, which is used
inside the firewall
Paolo,
Great a power failure coul be helpfull at some time :)
Olivier
!
Thanx for all the the help.
Paolo
Olivier Nicole wrote:
>
> Paolo,
>
> At this stage, configuration is a problem of OpenBSD, and I don't use
> OpenBSD, nor I use NAT.
>
> I understand your server is on NAT address and the client is outside.
>
&g
(i.e. 192.168.31.100). Most of my clients are on the
same LAN so there isn't a problem. One client though is located outside
the firewall (and NAT proxy, actually it's the DMZ, but the IP address
gets translated non the less). My NAT Proxy is IPFILTER on OpenBSD
(2.8) and the NAT rules (f
> From What I read in the FAQ, Amanda won't be able to backup a computer
>if there is a NAT proxy in the way. Is this true?
Provided you configure your NAT properly, there is no reason it could
not be done.
Problem arise if you have several clients that are with NAT
addresses. But
Hi
From What I read in the FAQ, Amanda won't be able to backup a computer
if there is a NAT proxy in the way. Is this true?
Paolo
--
123456789012345678901234567890123456789012345678901234567890123456789012
25 matches
Mail list logo