As stated in the manual "In order to perform data (file) replication over the Internet you have to configure the firewall port to 873." We have certain security measures. Again send the logs to support and we can review them.
Could you tell me which exact log contains more information on why the rsync replication fails please. I have looked through and can not see which one it is. Thanks
The log file is located in the GUI STATUS -> Hardware -> Function: Logs then click on the Download button. Then use a program like WinRAR to open the ..tar.gz file then search in the main dir listings for the rsync.log other logs you should look at to make sure all is ok is the Tasks, dmesg2, critical errors there are a few others and how to understand them we have a video on our website as with many other videos that you can learn logs.
Have now got to the bottom of this, by dedicating a whole public IP address to the internal DSS using static NAT/PAT. It turns out that after the internal DSS (the source DSS on an internal IP address) initiates the replication, that the remote DSS sends an icmp packet back to the source DSS. Once this is allowed, the replication starts fine. The tcp/873 is utterly irrelevant in this scenario.
Surely someone at Open-E knows this perfectly well. Why did I have spend so many hours discovering this for myself?
I was assuming that your where RTFMing from the manual "reading the fine manual"
This is why I was mentioning the port 873 as this is clearly mentioned in the manual as I stated SEE top page of 107 in 3rd note
down from the top explaining what to do w/ WAN replication. In the future let me know that you did not read the manual about a certain function that you are inquiring about, I am Cisco certified as well and those tests days are long over but reading the manual was critical when learning the functions.
Adding another note: The forum is community based so forum moderators are assisting outside of their normal work hours so it is out of our free interest to help and assist.
I did indeed read the manual before raising a ticket in the forum and I do appreciate that you do not have to answer any particular question out of work hours. I have just re-visited the manual on page 107 and feel no more enlightened. As a fellow CCNP, could you explain what the relevance of tcp/873 is then for my scenario eg. internal DSS is replicating to a DSS on the outside? I first allowed access to this port from outside and the file rep still did not work. I saw on my Cisco log that the outside DSS was trying to send icmp packets to the internal DSS, so allowed this and then everything works. I have removed access to tcp/873 from outside and everything continues to work. Perhaps I am rather thick, but I have read nothing about needing to allow ICMP packets from the outside to the internal address of the inside DSS. Are you saying that the documentation is clear in this case?
The rsync application essentially uses the port 873. This application can only be found on computers that are running on the UNIX OS. Rsync is utilized in the synchronization of folders and files in computers, even when the machines are not connected or physically close to each other. This information is transferred through the Local Access Network or the LAN or the Internet. The application associated with the port runs a background process and also listens to the port 873 on the TCP protocol. This information that is passing through this port 873 flows to and fro the computer.
In this case you will connect to a remote rsync server running on TCP port 873.
You may establish the connection via a web proxy by setting the environment variable RSYNC_PROXY to a hostnameort pair pointing to your web proxy.
Note that your web proxy's configuration must allow proxying to port 873.
Using rsync in this way is the same as using it with rsh or ssh except that:
TCP Port 873 may use a defined protocol to communicate depending on the application. A protocol is a set of formalized rules that explains how data is communicated over a network. Think of it as the language spoken between computers to help them communicate more efficiently.
TCP port 873 uses the Transmission Control Protocol. TCP is one of the main protocols in TCP/IP networks. Whereas the IP protocol deals only with packets, TCP enables two hosts to establish a connection and exchange streams of data. TCP guarantees delivery of data and also guarantees that packets will be delivered on port 873 in the same order in which they were sent. Guaranteed communication over port 873 is the key difference between TCP and UDP. UDP port 873 would not have guaranteed communication in the same way as TCP.
Administrator
ort pair pointing to your web proxy.
Posting Permissions
Reply With Quote