Avamar:如何使用 goav 網路資料管理協定防火牆功能表

Summary: 本文說明如何使用「goav ndmp firewall」命令集。

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Instructions

Goav 版本 1.51 及更新版本支援此功能。

 

請按照 Dell 文章 192151,Avamar 中的指示操作:Goav 工具,可下載 Goav 工具並將其安裝至 Avamar。回顧一下:

  1. 可從 central.dell.com 站點下載工具,或選擇使用 Avamar 的 wget。
  2. 下載到 Avamar 後,使工具可執行

 

網路資料管理通訊協定 (NDMP) 防火牆功能表:

Usage:M
  goav ndmp firewall [command]

Available Commands:
  allowlist   NDMP firewall settings
  disable     Disable the NDMP firewall.
  enable      NDMP firewall enable
  setup       This will display firewall rules and configured NAS client addresses
  start       NDMP firewall start
  status      NDMP firewall status
  stop        NDMP firewall stop

Flags:
  -h, --help   help for firewall

Global Flags:
  -d, --debug      debug output
  -f, --force      Ignore Configuration
  -n, --noheader   Do no display header

Use "goav ndmp firewall [command] --help" for more information about a command.

 

命令說明:

  • 停用 防火牆服務在開機時啟動: 
    ./goav ndmp firewall disable --name <ndmp accelerator>

The flag, "--name" is required.
  • 啟動 防火牆服務: 
    ./goav ndmp firewall start --name <ndmp accelerator>

The flag, "--name" is required.
  • 停止 防火牆服務: 
    ./goav ndmp firewall stop --name <ndmp accelerator>

The flag, "--name" is required.
  • 顯示 一或多個防火牆的狀態: 
    ./goav ndmp firewall status
  • setup 命令:
    • 掃描舊版防火牆檔案 (/etc/firewall-ips)
    • 掃描 /usr/local/avamar/var/<NAS Client> Directory 中的 NAS 用戶端組態
    • 建立防火牆規則
    • --build 將防火牆規則套用至 NDMP 加速器
    • 備份防火牆檔案 /usr/local/avamar/lib/admin/security/avfwb_custom_config.txt
    • 如果防火牆正在執行中,請重新啟動防火牆
    ./goav ndmp firewall setup

 

NDMP 防火牆允許清單功能表:

This allows for users to Add/Remove CUSTOM firewall rules that are required for backups.  NAS filer IP addresses need to be ommited from Firewall

Usage:
  goav ndmp firewall allowlist [command]

Available Commands:
  add         Allows users to add ip(s) to the firewall which are required for NDMP backup/restore functionality to the NDMP Accelerator
  remove      Used to remove a NAS Filer IP address from a firewall allowlist
  show        Lists the Custom Firewall rules configured on NDMP Accelerator

Flags:
  -h, --help   help for allowlist

Global Flags:
  -d, --debug      debug output
  -f, --force      Ignore Configuration
  -n, --noheader   Do no display header

 

命令說明:

  • 將 IP 位址新增 至防火牆自訂規則:

    ./goav ndmp firewall allowlist add 

Example: goav ndmp firewall allowlist add --ips 192.168.0.1,192.168.0.2,192.168.0.3 --name <ndmp accelerator>

The flags, "--name" and "--ips" are required.

    此外,也會備份防火牆檔案 /usr/local/avamar/lib/admin/security/avfwb_custom_config.txt。這對於「無法建立資料連線以解決 <IP 位址>、連接埠 <#####>」錯誤很有幫助。

  • 從防火牆自訂規則中移除 IP 位址
    ./goav ndmp firewall allowlist remove 

The flag, "--name" is required.
  • 在 NDMP 加速器上顯示防火牆的自訂規則
    ./goav ndmp firewall allowlist show --name <ndmp accelerator>

The flag, "--name" is required.

 

Affected Products

Avamar
Article Properties
Article Number: 000216619
Article Type: How To
Last Modified: 09 Jul 2024
Version:  8
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.