See my answers below

-----Original Message-----
From: veritas-bu-bounces AT mailman.eng.auburn DOT edu
[mailto:veritas-bu-bounces AT mailman.eng.auburn DOT edu] On Behalf Of Dennis
Peacock
Sent: Thursday, October 02, 2008 8:38 AM
To: VERITAS-BU AT mailman.eng.auburn DOT edu
Subject: [Veritas-bu] Netbackup 6.x firewall ports - Help!


OK...I read through the documentation. Found out about these ports. We
are trying to develop a "standard" with our firewall team for:

1. What ports need to be opened on a new master server setup.

Answer- It would use vnetd TCP port 13724 and PBX TCP port 1556. You
don't need 13783 unless you use vopie which no one does. And bpcd port
13782 is only for out bound connections that for 6.x clients and servers
would first go through the vnetd port which then hands off the
connection to bpcd.

2. Which direction does the communications need to take place with each
requested port (bi-directional or single direction)

Answer- Both vnetd and pbx need to be bi-directional between NBU
servers. You only need to allow vnetd 13724 outbound for 6.x clients and
bpcd for legacy clients.

3. Which protocol needs to be allowed for each port: TCP or UDP.

Answer- NBU uses only TCP not UDP for socket connections.

4. Which ports/protocol/direction needs to be opened for Windows GUI
access to a Unix box via the Netbackup Windows/Java GUI.

Answer- Same ports- Vnetd and pbx too. The Windows remote admin console
is simple Windows media server software stripped down. Java runs over
vnetd and pbx also.

Can ANYBODY here help me get this all straightened out once and for all?
PLEASE?????

Answer- If you haven't seen this yet this is a good resource of NBU port
requirements -

VERITAS NetBackup (tm) 6.0 Port Usage Guide for Windows and UNIX
Platforms
http://support.veritas.com/docs/281623

VNETD/13724:
           Determines Netbackup version of media server.
           Starts bpbrm for backups and restores.
           Starts bptm to manage tape storage units.
           Starts bpstsinfo to manage disk storage units.
           Accesses or updates host properties for media server.
           Determines Netbackup version of client.
           Gets list of mount points for multi-streamed backups.
           Accesses or updates host properties for client.
           Accesses legacy policy information from bpdbm.
           Accesses legacy job information from bpjobd.
           Updates image catalog information to bpdbm.
           Makes miscellaneous requests to bprd.
           Establishes sockets to other media servers for duplication,
disk staging, and synthetics.
           Establishes sockets to backup or restore a client.
           Connects back for bpcd requests from the master.

VERITAS_PBX/1556:
           Accesses job information.
           Accesses resource information.
           Connect-back for job information.
           Connect-back for job monitor.
           Connect-back for resource information.
           Access information about device, media, and storage
databases.

VOPIED/13783:
           Authenticates user for database backup, user backup, or
restore. (Client with Legacy Security)

BPCD/13782:
           Accesses or updates host properties for client.
           Establishes sockets to backup or restore a client.
           Establishes initial socket for backup or restore.

VRTS-AUTH-PORT/4032:
           Authorizes user for administration.

+----------------------------------------------------------------------
|This was sent by dpeaco AT acxiom DOT com via Backup Central.
|Forward SPAM to abuse AT backupcentral DOT com.
+----------------------------------------------------------------------


_______________________________________________
Veritas-bu maillist  -  Veritas-bu AT mailman.eng.auburn DOT edu
http://mailman.eng.auburn.edu/mailman/listinfo/veritas-bu

_______________________________________________
Veritas-bu maillist  -  Veritas-bu AT mailman.eng.auburn DOT edu
http://mailman.eng.auburn.edu/mailman/listinfo/veritas-bu