Our vBulletin migration is complete.
Welcome vBulletin users! All content and user information from the Micro Focus Forums (vBulletin) site has been migrated to this site. READ MORE.
Highlighted
Micro Focus Expert
Micro Focus Expert
394 views

(DP) Support Tip: TCP wrappers prevent connection to OMNI service in Linux/Unix clients

Data Protector Linux client installation works but then import into the cell fails.

When trying to run telnet to the client on port 5555 connection is unexpectedly closed.

Debug.log and inet.log files in the client are empty, they don't exist., or they have not been updated for some time.

The only clue we can find is similar to this message in /var/log/messages or syslog.log:

Feb 12 03:09:33 linux_host xinetd[2267]: START: omni pid=3044 from=::ffff:127.0.0.1
Feb 12 03:09:33 linux_host xinetd[3044]: libwrap refused connection to omni (libwrap=inet) from ::ffff:127.0.0.1
Feb 12 03:09:33 linux_host xinetd[3044]: FAIL: omni libwrap from=::ffff:127.0.0.1
Feb 12 03:09:33 linux_host xinetd[2267]: EXIT: omni status=0 pid=3044 duration=0(sec)

This means that TCP wrappers rules are in place and they are preventing incoming connections to the Omni service.

Probably a line like this can be found in /etc/hosts.deny file:

ALL:  ALL

Which means connections to ALL services are denied from ALL hosts.

The solution to this problem is to configure TCP wrappers to allow connections to the Data Protector services or remove any lines from both /etc/hosts.allow and /etc/hosts.deny files, to remove all rules.

TCP Wrappers are available in most Linux distros and also on HPUX, Solaris and other Unix Operating Systems. But they usually come disabled by default (hosts.allow and hosts.deny are empty).

For more information on TCP wrappers:

https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/security_guide/sect-security_guide-tcp_wrappers_and_xinetd

 

 

Labels (1)
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.