Arthur Emerson III wrote: > If "outside the LAN" includes a network address translation (NAT) > router, then you will need to configure it to pass port 9102 > traffic through to your WinXP system. The quick test for the > presense of a NAT device is to type "ipconfig" at a command > prompt. If your IP address is in the form 192.168.*.* , 10.*.*.* , > or 172.16-31.*.* , then you probably have a NAT device between > you and the Internet.
Yes, there is a router with NAT between the server and the internet. And it is configured to pass the bacula ports to the server. The client has a public IP and hence no NAT. > Assuming that the system has direct (non-NAT) IP connectivity, > I would look deeper into the firewall config. There are several > settings in the WinXP SP2 firewall code that allow you to only > permit access to ports from the local subnet, which obviously has > changed since you moved the machine out of the LAN. Since you're > using a third-party firewall, you are on your own to verify > that it doesn't work the same way. Every test that you have run > shows that the FD is listening on port 9102, and something is > preventing the DIR's packets from getting to it. I really checked it. It tested it with disable firewall. If the firewall is enabled it reports the connections from the server as pass to bacula-fd. But it seems that fd doesn't do anything with it if it comes from a non-LAN IP. > If all else fails, you can always bring the system back onto > your LAN (virtually, of course!) using OpenVPN. Since it > uses SSL and not IPSec, it builds point-to-point links that > blow right through NAT devices and give you an encrypted link > to boot. You probably don't want to be doing an unencrypted > backup over the Internet anyway, so you can kill two birds > with one stone by using OpenVPN to set up a virtual link > back to Bacula..... I want to keep the client outside of the LAN, even virtually. /M ------------------------------------------------------- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42" plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php _______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
