Bug 757910

Summary: amanda xinetd file now using TCP
Product: [Fedora] Fedora Reporter: Patrick C. F. Ernzer <pcfe>
Component: system-config-firewallAssignee: Thomas Woerner <twoerner>
Status: CLOSED NOTABUG QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 16CC: lnykryn, twoerner
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-04-11 06:28:12 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 494832    

Description Patrick C. F. Ernzer 2011-11-28 23:35:59 UTC 
Thomas,

in F16 amanda seems to have switched to TCP
/etc/xinetd.d/amanda now has
protocol		= tcp

up to F15 included it was UDP

As such, s-c-firewall might need it's amanda rule adjusted.

Do not do anything just yet, I'm creating this bug so I do not forget. Will open 10080 TCP tonight and see tomorrow morning if the backup was OK (last night, with 10080 only open on UDP failed as one would expect)

I'll set the bug NEEDINFO on me for now and I'll add the amanda maintainer to get a second opinion on this (I found no mention on amanda in the F16 release notes and asking Lukas might be quicker than me waiting 24 hours after each change for the daily amanda run to happen)
Comment 2 Patrick C. F. Ernzer 2011-12-01 18:47:13 UTC 
Thomas,
did some more digging.
Can you please add TCP (in addition to the existing UDP rule) when a user allows 'Amanda Backup Client'. (old amanda used UDP by default, new one TCP). Alternatively 2 separate selection, 'Amanda Backup Client  with server version up to 3.2' (for 10080 UDP) and 'Amanda Backup Client  with server version 3.3 and up' (for 10080 TCP).

ref: http://wiki.zmanda.com/index.php/3.3_features

I'll file a separate bug against amanda WRT to my el6 based server not backing up a F16 client. If you would prefer to wait with the change until I got a working backup, set NEEDINFO on me.
Comment 3 Thomas Woerner 2011-12-02 12:32:47 UTC 
I'd prefer to wait with the change until you got a working backup. Maybe more changes are needed.
Comment 4 Patrick C. F. Ernzer 2011-12-13 09:15:00 UTC 
success.
sorry, early I had fat-fingered my edit of /etc/xinetd.d/amanda on the client when trying to get it to do bsd auth like the server does.

next up, try to get the server (2.6.1p2-7.el6) to do bsdtcp auth to the new clients. I'll report back.

leaving NEEDINFO on me for now
Comment 5 Patrick C. F. Ernzer 2012-04-11 06:28:12 UTC 
Thomas,
apologies, I will not get to decently test this before F17 (not enough spare cycles) and with the new and improved firewalld in 17, we might as well close this bug as no longer relevant.
Sorry about thenoise
PCFE