the ip that i was referring to before was the ip of the firewall.
??? Sounds like something is not configured very well there then. While communication should use firewall it is not firewall IP that should go to client but server's translated by firewall for client to understand.
in our firewall, the logs showed that the client is connecting to the firewall ip, and not the backup server.
That's doesn't seem right - check your NAT.
i cannot test the rpc communication because 111 is blocked in our firewall. correct me if i am wrong but i think legato does not need 111 for communication because it has its own portmapper.
As for port 111, I would not put my hand in fire for that - it might depend on the release - but even then you should be able to see drop in the log of the firewall.
Verify your basic network connectivity (ping, nslookup) - from what it looks like we are not getting as far as using any ports to transfer data as you are failing with unknown hosts errors. Configure hosts files on the client and server to see if there are still issues; verify you have listed all aliases of the client.
actually, the server was able to establish connection with the client given these reasons: - the firewall logged the connection from the server to the client - the client responded to an unknown host message during the retries (as seen from my first post). there were also logs in the firewall that the client was trying to connect with the server.
the 6 retries of the server also logged 6 hosts related errors on the dmz client
04/12/06 09:10:53 nsrexecd: Host name verification failed - unknown host:
if i add the hostname in the /etc/hosts file with the firewall_ip, the backup still doesn't run.
And what is the error then? I assume you don't see firewall IP but rather IP assigned to backup server on that side of the NAT cloud. Did you test RPC communication between server and client and does it timeout?
And what is the error then? I assume you don't see firewall IP but rather IP assigned to backup server on that side of the NAT cloud. Did you test RPC communication between server and client and does it timeout?
the ip that i was referring to before was the ip of the firewall. when i added it in /etc/hosts, no error message was generated on the client, but on the server side, i get a connection timeout.
in our firewall, the logs showed that the client is connecting to the firewall ip, and not the backup server.
i cannot test the rpc communication because 111 is blocked in our firewall. correct me if i am wrong but i think legato does not need 111 for communication because it has its own portmapper.
Verify your basic network connectivity (ping, nslookup) - from what it looks like we are not getting as far as using any ports to transfer data as you are failing with unknown hosts errors. Configure hosts files on the client and server to see if there are still issues; verify you have listed all aliases of the client.
ble1
4 Operator
•
14.4K Posts
0
April 12th, 2006 01:00
the firewall.
??? Sounds like something is not configured very well there then. While communication should use firewall it is not firewall IP that should go to client but server's translated by firewall for client to understand.
connecting to the firewall ip, and not the backup
server.
That's doesn't seem right - check your NAT.
blocked in our firewall. correct me if i am wrong
but i think legato does not need 111 for
communication because it has its own portmapper.
from_bck_server> rpcinfo -t client_name 390113 1
from_client> rpcinfo -t bck_server 390113 1
As for port 111, I would not put my hand in fire for that - it might depend on the release - but even then you should be able to see drop in the log of the firewall.
techsup2
34 Posts
0
April 12th, 2006 01:00
nslookup) - from what it looks like we are not
getting as far as using any ports to transfer data as
you are failing with unknown hosts errors. Configure
hosts files on the client and server to see if there
are still issues; verify you have listed all aliases
of the client.
actually, the server was able to establish connection with the client given these reasons:
- the firewall logged the connection from the server to the client
- the client responded to an unknown host message during the retries (as seen from my first post). there were also logs in the firewall that the client was trying to connect with the server.
the 6 retries of the server also logged 6 hosts related errors on the dmz client
ble1
4 Operator
•
14.4K Posts
0
April 12th, 2006 01:00
failed - unknown host:
if i add the hostname in the /etc/hosts file with the
firewall_ip, the backup still doesn't run.
And what is the error then? I assume you don't see firewall IP but rather IP assigned to backup server on that side of the NAT cloud. Did you test RPC communication between server and client and does it timeout?
techsup2
34 Posts
0
April 12th, 2006 01:00
firewall IP but rather IP assigned to backup server
on that side of the NAT cloud. Did you test RPC
communication between server and client and does it
timeout?
the ip that i was referring to before was the ip of the firewall. when i added it in /etc/hosts, no error message was generated on the client, but on the server side, i get a connection timeout.
in our firewall, the logs showed that the client is connecting to the firewall ip, and not the backup server.
i cannot test the rpc communication because 111 is blocked in our firewall. correct me if i am wrong but i think legato does not need 111 for communication because it has its own portmapper.
DavidHampson
2 Intern
•
1.1K Posts
0
April 12th, 2006 01:00
DavidHampson
2 Intern
•
1.1K Posts
0
April 12th, 2006 02:00
fclancy1
1 Message
0
June 15th, 2006 06:00