Kenneth_Hansen
15 years agoLevel 6
NBU - SUN ACS and RPC problems
Hi folks,
I've been looking into this problem before and it's not been easy to figure out.
What I'm looking for is to control which ports that NBU and ACS uses to communicate.
This relates to both windows and solaris in our environment.
This has been done:
NBU media servers
vm.conf:
ACS_TCP_RPCSERVICE
ACS_SSI_INET_PORT = HOST 30032
ACS_CSI_HOSTPORT = HOST 30031
ACSLS Server
Enable CSI to be used behind a firewall (user-defined inbound port) [TRUE]:
Port number used by the CSI to receive incoming ACSLS requests [30031]:
CSI support for RPC using the TCP protocol is enabled [TRUE]: ( Default , whathappens if i turn this of? )
CSI support for RPC using the UDP protocol is enabled [TRUE]: ( Default, whathappens if i turn this of? )
Problem to solve:
RPC demands that a port range is openv in FW to, default 1025 - 65554 or something like that.
That I would like to see is RPC disabeled, reason for this is to be able to control down to a single port ( or at least only a few ports ) the communication between ACSLS and NBU servers.
Question:
Have anyone disabled RPC on ACSLS and NBU? How did you do it? What is your experience?
Please help !!!
I've been looking into this problem before and it's not been easy to figure out.
What I'm looking for is to control which ports that NBU and ACS uses to communicate.
This relates to both windows and solaris in our environment.
This has been done:
NBU media servers
vm.conf:
ACS_TCP_RPCSERVICE
ACS_SSI_INET_PORT = HOST 30032
ACS_CSI_HOSTPORT = HOST 30031
ACSLS Server
Enable CSI to be used behind a firewall (user-defined inbound port) [TRUE]:
Port number used by the CSI to receive incoming ACSLS requests [30031]:
CSI support for RPC using the TCP protocol is enabled [TRUE]: ( Default , whathappens if i turn this of? )
CSI support for RPC using the UDP protocol is enabled [TRUE]: ( Default, whathappens if i turn this of? )
Problem to solve:
RPC demands that a port range is openv in FW to, default 1025 - 65554 or something like that.
That I would like to see is RPC disabeled, reason for this is to be able to control down to a single port ( or at least only a few ports ) the communication between ACSLS and NBU servers.
Question:
Have anyone disabled RPC on ACSLS and NBU? How did you do it? What is your experience?
Please help !!!
Netbackup and the ACSLS firewall feature, step by step description:
http://www.mass.dk/netbackup/guides/48-netbackup-and-the-acsls-firewall-feature.html
Please note: The firewall must be configured to allow session being initiated from both sides. ACSLS does not answer a request in the same session, but reply by initiating a new session.