VOX

Yes, that is the current setup.

Did you set those clients up in the Master server properites to force communictaion over vnetd (port 13724)? If this is version 5.0 of NBU, you'll need to do that. If it's version 6.0, it's already assumed.

Here are the steps for 5.0:

You need 13782 incoming from the master to the client:
- Test from master with portqry -n clientname -e 13782
- Should get TCP port 13782 (bpcd service): LISTENING

You need 13724 outgoing from client to master:
- Test from client with portqry -n masterserver -e 13724
- Should get TCP port 13724 (vnetd service): LISTENING

If you get FILTERED for either of these tests, your firewall is not opened in the correct direction.

Then you need to add the client to the master server in "Client Attributes"
Check "Use Connect Back" or "No Connect Back" (I can't remember exactly as we are now on 6.0)

At this point, you should be able to open host properties on the client.

If you want to be able to initate restores from the client, you will also have to go into the client properties, and go to the Firewall tab, and add the master server and choose "no connect back"

With 6.0 vnetd is the default, so you only need 13724 both directions, and NO other ports and no other configurations.

Thanks, it does appear to be a fw issue.

I want to thank you all for the valuable information. We have been using IPSec to backup through our Firewall, a process I would never recommend to anyone. We had continuous problems with it.

However, has anyone seen any performance issues with the backups? Any recommendation on fine tuning through a firewall?