i know i have had no luck with running amanda behind ipf on my sun
boxes. i allow the correct ports and protocals that amanda uses (based on
/etc/services) in my ruleset, and considering its stateful, you would
think things would work. but it just doesnt. no real explanation.....
brian
On Fri, 1 Dec 2000, Tom Hudak wrote:
> Ok, I've posted to the group 2 times and no-one seems to have setup a working
> config through a firewall or can only guess as to how it *should* be, I have
> come to the conclusion that amcheck transmits it's data over ports *outside*
> of my specified range due to the fact that I can use nc to listen on either
> end on every port I've specified and they communicate directly yet amcheck
> still reports that the 6???? port is unsecure. Something from amcheck is being
> masqueraded, I'm not sure exactly how to continue other than logging all
> netstat or tcpdump data and scouring it form data about amcheck... There must
> be an easier way to break through my firewall than this. If you have any
> suggestions please send them my way, I do not want to re-arrange the web/mail
> server setup to accomodate my backup scheme. My configuration schemes are
> listed in my last post, and due to mail havoc things aren't functioning quite
> as smoothly as and mail isn't being sorted properly yet, so excuse me if I'm
> repeating myself as I may not have yet seen replies.
> Thanks a lot,
> --
> Thomas J. Hudak
> Jr. Systems Administrator
> Sistina Software Inc.
> Phone: 612.379.3951 Fax: 612.379.3952
>
