-----BEGIN PGP SIGNED MESSAGE-----
>>>>> "Niall" == Niall O Broin <[EMAIL PROTECTED]> writes:
Niall> Speak to me brother ! I've been posting about a similar problem here but
Niall> I've got no responses. Do you get messages like these in the report:
Niall> serv1 /boot lev 0 FAILED [Request to serv1 timed out.]
Niall> serv1 / lev 0 FAILED [Request to serv1 timed out.]
Niall> My remote (to describe the machines on the other side of the firewall)
Niall> backups fail nearly all the time. My boxes are all Linux with large / and
Niall> small /boot partitions. Sometimes L0 backups of /boot work, and
BTW: I turned *off* stateful connection tracking in the firewall, and this
solved the problem.
I now configure a rule for each client that I talk to, permitting 10080
back. Previously, I just had my firewall permit outgoing from the backup
server to 10080 and used stateful inspection to permit the reply.
(This is a NetBSD IPF firewall)
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[
] [EMAIL PROTECTED] http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: latin1
Comment: Finger me for keys
iQCVAwUBPRojRYqHRg3pndX9AQEJJgP/ZSuuPu1vLiSz+xzLMjTcRvOPSuiovnbM
TscOYxl302d40mGkd7lXGYopgR6h0klNvZQGg8KSlh7FqkTCJb8sm+PHyHLBPev/
KBLmnh+O/Fa9XC/KzuiEBNZQT+TYtf2RfBr6MLBbKPz1BictnTxbZDe7x4BcVlwo
qkRxdsXF0mI=
=NTrx
-----END PGP SIGNATURE-----
