Hallo Tomasz,
sorry, i canot solve the simple problem. I wrote in the iptables three port
9101,9102,9103 on local machine (bacula server) are allowed and 9102 on
remote machine (bacula client). But nmap show me that all port are not
there.
local machine (bacula server) has no static IP
HomeLinux:/ # iptables --list
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp
dpt:bacula-fd
ACCEPT tcp -- anywhere anywhere tcp
dpt:bacula-fd
ACCEPT tcp -- anywhere anywhere tcp
dpt:bacula-dir
ACCEPT tcp -- anywhere anywhere tcp
dpt:bacula-sd
ACCEPT udp -- anywhere anywhere udp
dpt:bacula-sd
ACCEPT udp -- anywhere anywhere udp
dpt:bacula-dir
[EMAIL PROTECTED]:~/jboss-4.0.5.GA/server/default/deploy> nmap -v HomeLinux
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-09-21 09:06
CEST
Initiating Connect() Scan against HomeLinux.site (127.0.0.2) [1680 ports] at
09:06
Discovered open port 22/tcp on 127.0.0.2
Discovered open port 3306/tcp on 127.0.0.2
Discovered open port 111/tcp on 127.0.0.2
The Connect() Scan took 0.13s to scan 1680 total ports.
Host HomeLinux.site (127.0.0.2) appears to be up ... good.
Interesting ports on HomeLinux.site (127.0.0.2):
Not shown: 1677 closed ports
PORT STATE SERVICE
22/tcp open ssh
111/tcp open rpcbind
3306/tcp open mysql
Nmap finished: 1 IP address (1 host up) scanned in 0.245 seconds
remote machine (bacula client) has a static IP
ponte-net:/home/argonist # iptables --list
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp
dpt:bacula-fd
ACCEPT udp -- anywhere anywhere udp
dpt:bacula-fd
Using nmap from lokal machine to remote machine
[EMAIL PROTECTED]:~> nmap -v ponte-net.de
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-09-21 09:10
CEST
Machine 87.106.25.52 MIGHT actually be listening on probe port 80
DNS resolution of 1 IPs took 0.00s.
Initiating Connect() Scan against s15260882.onlinehome-server.info (
87.106.25.52) [1680 ports] at 09:10
Discovered open port 80/tcp on 87.106.25.52
Discovered open port 443/tcp on 87.106.25.52
Discovered open port 22/tcp on 87.106.25.52
Discovered open port 8443/tcp on 87.106.25.52
The Connect() Scan took 35.40s to scan 1680 total ports.
Host s15260882.onlinehome-server.info (87.106.25.52) appears to be up ...
good.
Interesting ports on s15260882.onlinehome-server.info (87.106.25.52):
Not shown: 1672 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
135/tcp closed msrpc
137/tcp closed netbios-ns
138/tcp closed netbios-dgm
139/tcp closed netbios-ssn
443/tcp open https
8443/tcp open https-alt
Nmap finished: 1 IP address (1 host up) scanned in 35.683 seconds
Manuel
On 9/21/07, tomasz dereszynski <[EMAIL PROTECTED]> wrote:
>
> Manuel Ostendorf wrote:
> > Hi Bruno,
> >
> > I tried with nmap. Right, bacula-fd is not there, that means is closed.
> > I have been tried with "iptables -A INPUT -j ACCEPT -p tcp -dport:9102",
> > but it is not working. Is that wrong?
> >
>
> its just not all you need
> you have to set rules for incoming and outgoing connections on both
> firewalls
> its quite simple when you know what are you doing.
> briefly:
> - you need to allow connection from dir on remote machine with fd to
> port 9102
>
> guess/hope you dont have rules about outgoing connection then
>
> - you need to allow connection from fd on dir/sd machine to port 9101
> (dir) and to 9103 (sd)
>
> like i said till you dont rule anyhow outgoing connection that will do
> the job
>
> last thing - of course if both servers are in public net (public IPs)
>
>
> > Manuel
> >
> > On 9/20/07, *Bruno Friedmann* <[EMAIL PROTECTED]
> > <mailto:[EMAIL PROTECTED]>> wrote:
> >
> > Hi Manuel
> >
> > simply try (if you have ) the nmap command
> >
> > nmap -v "ip or name of bacula-fd's machine" this should show you at
> > least the bacula-fd daemon listen port open
> > if not working : aka no ping you could use -P0 flag.
> > and if no result are shown, this would indicate that some firewall
> > rules block your bacula traffic.
> >
> > Hope this help you a bit ...
> >
> > Manuel Ostendorf wrote:
> > > Hello,
> > >
> > >
> > > I want to backup the datas from the remote machine. The bacula is
> > on lokal
> > > machine fine, but the bacula server tried to connect bacula-fd on
> > remote
> > > machine and the connection is failed.
> > >
> > > error message:
> > > 20-Sep 13:39 HomeLinux-dir: -Console-.2007-09-20_13.35.38 Fatal
> error:
> > > bsock.c:129 Unable to connect to File daemon on ponte-net.de:9102
> > <http://ponte-net.de:9102>. ERR=Die
> > > Wartezeit für die Verbindung ist abgelaufen
> > >
> > > local-machine:
> > > HomeLinux:/etc/bacula # netstat -l | grep bacula
> > > tcp 0 0
> > *:bacula-dir *:* LISTEN
> > > tcp 0 0 *:bacula-fd
> > *:* LISTEN
> > > tcp 0 0 *:bacula-sd
> > *:* LISTEN
> > >
> > > remote-machine:
> > > ponte-net:/home/argonist # netstat -l | grep bacula
> > > tcp 0 0 *:bacula-fd
> > *:* LISTEN
> > >
> > > I habe been checked between bacula-dir.conf and bacula-fd.conf.
> > It's fine.
> > > I think it is maybe a problem on firewall and don't know well
> about
> > > firewall.
> > >
> > > Manuel
> > >
> > >
> > >
> >
> ------------------------------------------------------------------------
> > >
> > >
> >
> -------------------------------------------------------------------------
> > > This SF.net email is sponsored by: Microsoft
> > > Defy all challenges. Microsoft(R) Visual Studio 2005.
> > > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
> > >
> > >
> > >
> >
> ------------------------------------------------------------------------
> >
> > >
> > > _______________________________________________
> > > Bacula-users mailing list
> > > Bacula-users@lists.sourceforge.net
> > <mailto:Bacula-users@lists.sourceforge.net>
> > > https://lists.sourceforge.net/lists/listinfo/bacula-users
> >
> >
> > --
> >
> > Bruno Friedmann [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>
> >
> > Ioda-Net Sàrl - www.ioda-net.ch <http://www.ioda-net.ch>
> > 2830 Vellerat - Switzerland
> >
> > Tél : ++41 32 435 7171
> > Fax : ++41 32 435 7172
> > gsm : ++41 78 802 6760
> >
> > C'est Facile et Cool d'Évoluer en ligne : www.cfcel.com
> > <http://www.cfcel.com>
> >
> >
> >
> > ------------------------------------------------------------------------
> >
> >
> -------------------------------------------------------------------------
> > This SF.net email is sponsored by: Microsoft
> > Defy all challenges. Microsoft(R) Visual Studio 2005.
> > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
> >
> >
> > ------------------------------------------------------------------------
> >
> > _______________________________________________
> > Bacula-users mailing list
> > Bacula-users@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/bacula-users
>
>
> --
> bEsT rEgArDs | "Confidence is what you have before you
> tomasz dereszynski | understand the problem." -- Woody Allen
> TD840-RIPE |
>
> Spes confisa Deo numquam confusa recedit
>
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users
