Avamar:如何使用 Goav Network Data Management Protocol 防火墙菜单

Summary: 本文介绍如何使用“goav ndmp firewall”命令集。

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

Goav 版本 1.51 及更高版本支持此功能。

 

按照戴尔文章 192151 Avamar:Goav 工具,用于将 Goav 工具下载并安装到 Avamar 上。回顾一下:

  1. central.dell.com 站点下载该工具,或者(可选)使用 Avamar 中的 wget。
  2. 将工具下载到 Avamar 后使其可执行

 

Network Data Management Protocol (NDMP) 防火墙菜单:

Usage:M
  goav ndmp firewall [command]

Available Commands:
  allowlist   NDMP firewall settings
  disable     Disable the NDMP firewall.
  enable      NDMP firewall enable
  setup       This will display firewall rules and configured NAS client addresses
  start       NDMP firewall start
  status      NDMP firewall status
  stop        NDMP firewall stop

Flags:
  -h, --help   help for firewall

Global Flags:
  -d, --debug      debug output
  -f, --force      Ignore Configuration
  -n, --noheader   Do no display header

Use "goav ndmp firewall [command] --help" for more information about a command.

 

命令说明:

  • 禁用 防火墙服务在启动时启动: 
    ./goav ndmp firewall disable --name <ndmp accelerator>

The flag, "--name" is required.
  • 启动 防火墙服务: 
    ./goav ndmp firewall start --name <ndmp accelerator>

The flag, "--name" is required.
  • 停止 防火墙服务: 
    ./goav ndmp firewall stop --name <ndmp accelerator>

The flag, "--name" is required.
  • 显示 一个或多个防火墙的状态: 
    ./goav ndmp firewall status
  • 设置 命令:
    • 扫描传统防火墙文件 (/etc/firewall-ips)
    • 扫描 /usr/local/avamar/var/<NAS Client> 目录中的 NAS 客户端配置
    • 构建防火墙规则
    • --build 将防火墙规则应用于 NDMP 加速器
    • 备份防火墙文件 /usr/local/avamar/lib/admin/security/avfwb_custom_config.txt
    • 如果防火墙正在运行,则重新启动防火墙
    ./goav ndmp firewall setup

 

NDMP 防火墙允许列表菜单:

This allows for users to Add/Remove CUSTOM firewall rules that are required for backups.  NAS filer IP addresses need to be ommited from Firewall

Usage:
  goav ndmp firewall allowlist [command]

Available Commands:
  add         Allows users to add ip(s) to the firewall which are required for NDMP backup/restore functionality to the NDMP Accelerator
  remove      Used to remove a NAS Filer IP address from a firewall allowlist
  show        Lists the Custom Firewall rules configured on NDMP Accelerator

Flags:
  -h, --help   help for allowlist

Global Flags:
  -d, --debug      debug output
  -f, --force      Ignore Configuration
  -n, --noheader   Do no display header

 

命令说明:

  • 将 IP 地址添加到 防火墙自定义规则:

    ./goav ndmp firewall allowlist add 

Example: goav ndmp firewall allowlist add --ips 192.168.0.1,192.168.0.2,192.168.0.3 --name <ndmp accelerator>

The flags, "--name" and "--ips" are required.

    此外,备份防火墙文件 /usr/local/avamar/lib/admin/security/avfwb_custom_config.txt。这对于错误“无法建立数据连接以地址 <IP 地址>,端口 <#####>”很有帮助。

  • 从防火墙自定义规则中删除 IP 地址
    ./goav ndmp firewall allowlist remove 

The flag, "--name" is required.
  • 显示 NDMP 加速器上防火墙的自定义规则
    ./goav ndmp firewall allowlist show --name <ndmp accelerator>

The flag, "--name" is required.

 

Affected Products

Avamar
Article Properties
Article Number: 000216619
Article Type: How To
Last Modified: 09 Jul 2024
Version:  8
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.