On Tue, 26 Feb 2002 at 11:45am, Graham Dunn wrote > The client I was trying to back up still was filtering some ports that > amanda wanted to use. > > Is there a complete list of the ports that amanda will use during the > data transfer? I though I had them all (the client could talk to the > server) as amcheck didn't report any errors. However, I remove all > packet filtering and things start working smoothly...
I posted the sequence a while ago...(search, search), a ha! Doing the estimates: The amanda server sends a UDP sendsize request from a privileged port to port 10080 on the client. The client sends a UDP packet (containg an ACK) from port 10080 to the privileged port on the server. It then sends another one containing the REP (the reply and dump estimate info). Finally, the server sends a UDP ACK from the privileged port to port 10080 on the client. Doing the backups: The amanda server sends a UDP sendbackup request from a privileged port (not necessarily the same one as above) to port 10080 on the client. The amanda client sends a UDP ACK from port 10080 to the originating privileged port on the server. It then sends another one containing the numbers of three (non-privileged) TCP ports to set up the data, message, and index connections. The amanda server sends a UDP ACK from the privileged port to port 10080 on the client. The amanda server then initiates three TCP connections on the ports indicated in the UDP packet from the client. These are on unprivileged ports on both systems. The dumper on the client then proceeds to start sending date over the TCP connections. So clients need to accept on UDP 10080 from UDP<1024, and accept on TCP>1024 from TCP>1024. -- Joshua Baker-LePain Department of Biomedical Engineering Duke University
