cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Veritas.com
Support

error ( Cannot Connect On Socket )

Go to solution
Vickie
Level 6

‎07-26-2013 10:01 AM

Hey Everybody,
 
I was working on a Issue,
The error ( Cannot Connect On Socket ) occurs while trying communicate a Client from Master server.
Checked BPCD logs and test the connectivity b/w client and master, which is not happening.
 
Found that "Windows Firewall" service is running on the server. Now by disabling the Firewal this issue could get resolved.
But my concern is ( as Firewall is used to protect the server from virus or any harmful objects ). Why we have to Disable it ?
Why NBU connection failed when server is Behind firewll ? Why can not we take backup along with Firewall Enabled ?
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
RamNagalla
Moderator
Moderator
Partner    VIP    Certified

‎07-26-2013 10:38 AM

you can make a connection when firewall is on..

but you need to add the netbackup ports to the firewall excepsssion list..(1556,13782,13724)

by default window firewall does not keep the ports in excepsssion list, becasue it does not know about it..

where ever there is any port requirement for any application that is the admin task to add them in excepstion list

trun on the firewall.. add the ports in excepstion list and check the comminication..

View solution in original post

0 Kudos
12 REPLIES 12

Go to solution
RamNagalla
Moderator
Moderator
Partner    VIP    Certified

‎07-26-2013 10:38 AM

you can make a connection when firewall is on..

but you need to add the netbackup ports to the firewall excepsssion list..(1556,13782,13724)

by default window firewall does not keep the ports in excepsssion list, becasue it does not know about it..

where ever there is any port requirement for any application that is the admin task to add them in excepstion list

trun on the firewall.. add the ports in excepstion list and check the comminication..

0 Kudos

Go to solution
Marianne
Level 6
Partner    VIP    Accredited Certified

‎07-26-2013 10:42 AM

Why we have to Disable it ?

Because it blocks all port connection - including NetBackup.

If you can tell Windows Firewall to allow comms on port 1556 (PBX) and vnetd (13724) it won't be necessary to disable it completely.

If NBU server and clients are on the same internal network and protected from external threats by the Company firewall, there is actually no need for individual firewalls.


Handy NetBackup Links
0 Kudos

Go to solution
Vickie
Level 6

‎07-27-2013 09:51 PM

Thanks Nagalla & Marianne,

But How can we check if the ports are listed in exception port at Firewall end?

Is there any commmand we can use or any GUI method to get confirmed as Ports are blocked ?

How to make sure about it ? So that I can reach out to concern team to make the changes.

 

0 Kudos

Go to solution
RamNagalla
Moderator
Moderator
Partner    VIP    Certified

‎07-27-2013 10:10 PM

see the below microsoft technote to add /remove  and see the exceptions

http://technet.microsoft.com/en-us/library/cc739482(v=ws.10).aspx

0 Kudos

Go to solution
Vickie
Level 6

‎07-29-2013 09:35 AM

Hi Nagalla, thnks for sharing the link. But this is for windows2003, and the client server is windows 2008. 
If you have any link for windows2008 which can help to get the Firewall Exception Port list, please share.
 
I checked and found some rules in advance setting of Firewall. But Port number was not clearly mentioned there, there were service names mentioned like Remote Desktop Server not the Ports.
0 Kudos

Go to solution
Marianne
Level 6
Partner    VIP    Accredited Certified

‎07-29-2013 10:05 AM

Please! This is a NetBackup forum.

Windows Firewall is a Microsoft product. Best to speak to your Windows Admin team or else post in a Microsoft forum.

All we can tell you from NBU point of view is which ports are needed for server/client comms.
You now need to go with this information to the admins of that firewall to open up ports.


Handy NetBackup Links
0 Kudos

Go to solution
RamNagalla
Moderator
Moderator
Partner    VIP    Certified

‎07-29-2013 12:33 PM

agreed with Marianne.

please talk with your windows admin to get them add in firewall exception 

you can google if you are looking for win 2008

0 Kudos

Go to solution
Vickie
Level 6

‎07-31-2013 06:55 AM

Thanks Marianne & Nagalla for your assistance
 
You guys says it well, I must go to Microsoft forum for issue or information regarding Microsoft product.
 
I just wanted to get confirmed from NBU end, as yes the Ports are not open for Communication. Is "telnet <client name> <port number>" the only way by which we can be sure about Port is not open.
 
0 Kudos

Go to solution
RamNagalla
Moderator
Moderator
Partner    VIP    Certified

‎07-31-2013 08:50 AM

i believe.. telnet is may be one of the ways.. not only way...

you can always check with the respective teams(network, OS) for more ways to find it.. :)

0 Kudos

Go to solution
Marianne
Level 6
Partner    VIP    Accredited Certified

‎07-31-2013 12:47 PM

telnet is certainly taking NBU out of the equation.

Yes, if telnet does not work, you need to talk with OS/security admins.


Handy NetBackup Links
0 Kudos

Go to solution
Vickie
Level 6

‎08-05-2013 08:40 AM

Thanks Nagalla & Marianne,
 
Issue resolved after listing the ports in firewall exception list
0 Kudos

Go to solution
epsilon22222
Level 4

‎08-05-2013 01:26 PM

Running the built command "bptestbpcd" would also assist you with this.

Generally found in: <install path>/netbackup/bin/admincmd/bptestbpcd

Typical command you can run using this:

bptestbpcd -host <hostname> -verbose

http://www.symantec.com/business/support/index?page=content&id=HOWTO43696

Obviously, the server would have to have connectivity for this command to demonstrate its connection attempts, otherwise it will give you an error.

0 Kudos