Hi,
I solved the problem finally this way. The solution ist Bacula version
independent. A backup job conversation goes like this
1. DIR tells SD to accept data from the FD
2. DIR tells FD which SD (and address) to use
3. FD starts sending data to the SD address.
In the case that your client is behind a firewall, you have to set the
firewall's address in an additional storage object in bacula-dir.conf. In my
case
Storage {
Name = "TapeStorage external"
Address = firewall.w-commerce.de
SDPort = 9103
Password = "....."
Device = HP-Ultrium2
Media Type = LTO
}
Next, setup up your firewall. Ensure that it does DNAT from the external
firewall IP to your internal SD IP on port 9103. If you run a backup job, DIR
tries to connect to SD IP, in my case firewall.w-commerce.de. At this point the
backup fails because DIR can't connect to SD.
Now the trick, append an additional DNAT rule in the OUTPUT-Chain at your
DIR-Server, which should do a DNAT to your SD-Server if the destination address
is your firewall and the destination port 9103. In my case:
# iptables -A OUTPUT -t nat -t tcp -d firewall.w-commerce.de --dport 9103 -j
DNAT --to-destination 192.168.66.150.
Now I can backup my external clients :-)
Best regards
Matty
__________________________________________________________
Mit WEB.DE FreePhone mit hoechster Qualitaet ab 0 Ct./Min.
weltweit telefonieren! http://freephone.web.de/?mc=021201
-------------------------------------------------------
This SF.Net email is sponsored by Yahoo.
Introducing Yahoo! Search Developer Network - Create apps using Yahoo!
Search APIs Find out how you can build Yahoo! directly into your own
Applications - visit http://developer.yahoo.net/?fr=offad-ysdn-ostg-q22005
_______________________________________________
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users
