Highlighted
Absent Member.
Absent Member.
11578 views

RH Linux server, how to let port 5555 be listened for Data protector

Jump to solution
Hi

I have five new Redhat Linux servers run ES4u6, HP DL360 box, Located in DMZ.
I have been doing configure those five new clients into Data protector cell manager for tape backup.
As you know I have configured over 50 RH Linux servers into D/P, I'm sure my processes are correct:

1. # vi /etc/services
Add below entry under the "Local services"
omni 5555/tcp # DATA-PROTECTOR

2. open port 5555 for D/P
# vi /etc/sysconfig/iptables
add below entry:
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 5555 -j ACCEPT
I used GUI "System Settings" - "Security Level" I added tcp:5555

3. # iptables -L
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:omni

4. Install "rsh",
# rpm -ivh /tmp/rsh-server-0.17-25.4.i386.rpm

5. # vi /etc/xinetd.d/rsh and vi /etc/xinetd.d/rexec
change the entry "disable = no" from "yes"

6. # vi /etc/securetty
add the entries
rexec
rsh

7. restart
# service xinetd restart

8. Telnet test and port check
# telnet svra 5555 -- svra is our D/P cell mgr server
failed
Trying 10.204.12.33...
telnet: connect to address 10.204.12.33: Connection timed out
telnet: Unable to connect to remote host: Connection timed out

# netstat -an | grep 5555
Nothing, 5555 was not be listened.

Normally I should get below outputs (I copy/paste from another Redhat Linux server in DMZ)

/root> telnet svra 5555
Trying 10.204.12.33...
Connected to svra (10.204.12.33).
Escape character is '^]'.
HP OpenView Storage Data Protector A.05.50: INET, internal build PHSS_36290/PHSS_36291/DPSOL_00269, built on Mon Sep 10 08:50:08 2007
Connection closed by foreign host.


/root> netstat -an | grep 5555
tcp 0 0 0.0.0.0:5555 0.0.0.0:* LISTEN

Network team said those five server's configuration the same like other RH client in DMZ, enable the port 5555 for D/P backup.
Could you please tell me how to let the port 5555 be listen. Is there any problem in above steps? Or is there any software package not installed into system, as you know those five server's OS not installed by me, by a vendor, basic installation.

Thanks a lot. Any answers will be very apprectiate!!!

-G
0 Likes
1 Solution

Accepted Solutions
Highlighted
Absent Member.
Absent Member.
> I'm sure my processes are correct:

I guess that there's nothing anyone else can
tell you then.


> 8. Telnet test and port check
> # telnet svra 5555 -- svra is our D/P cell mgr server
> failed
> Trying 10.204.12.33...
> telnet: connect to address 10.204.12.33: Connection timed out
> telnet: Unable to connect to remote host: Connection timed out

Looks like a bad route from 10.204.12.33
back to wherever you are, or else a firewall
blocking the connection. Luckily, you've
said nothing about the routes, and I know
nearly nothing about Red Hat firewall
configuration.

> # netstat -an | grep 5555
> Nothing, 5555 was not be listened.

If this were run on the system with address
10.204.12.33, I might care. The server needs
to be listening, not the clients. And,
judging by the one successful "telnet svra
5555", it is listening.

View solution in original post

0 Likes
9 Replies
Highlighted
Absent Member.
Absent Member.
> I'm sure my processes are correct:

I guess that there's nothing anyone else can
tell you then.


> 8. Telnet test and port check
> # telnet svra 5555 -- svra is our D/P cell mgr server
> failed
> Trying 10.204.12.33...
> telnet: connect to address 10.204.12.33: Connection timed out
> telnet: Unable to connect to remote host: Connection timed out

Looks like a bad route from 10.204.12.33
back to wherever you are, or else a firewall
blocking the connection. Luckily, you've
said nothing about the routes, and I know
nearly nothing about Red Hat firewall
configuration.

> # netstat -an | grep 5555
> Nothing, 5555 was not be listened.

If this were run on the system with address
10.204.12.33, I might care. The server needs
to be listening, not the clients. And,
judging by the one successful "telnet svra
5555", it is listening.

View solution in original post

0 Likes
Highlighted
Absent Member.
Absent Member.
Hi,

You can check this .

When do you telnet hostname 5555 from cell manager for linux client did you get response?

If this work.

Check if have you install telenet server on linux client?
0 Likes
Highlighted
Absent Member.
Absent Member.
Hi Steven and mkumar

Thanks a lot for your fast reply and answers.

This mornig, network team changed some firewall setting and I could telnet cell manger via port 555.

# telnet svra 5555
Trying 10.204.12.33...
Connected to svra (10.204.12.33).
Escape character is '^]'.
HP OpenView Storage Data Protector A.05.50: INET, internal build PHSS_36290/PHSS_36291/DPSOL_00269, built on Mon Sep 10 08:50:08 2007
Connection closed by foreign host.

But in Data protector cell mgr i still could not added them into backup system, I could not push the client disk agent software from cell mgr to clients. The error message are:
client serverb client not responding.
Error conneciong to client serverb
skipping client!

From Cell mgr (HP-UX server run HP-UX 11iv1), I could not telnet client via port 5555

telnet serverb 5555
Trying...
telnet: Unable to connect to remote host: Connection refused

On client server I also could not add static route

# route add -net 10.204.12.0 netmask 255.255.255.0 gw 10.250.3.194 dev eth1
SIOCADDRT: Network is unreachable

How to fix it.

Thanks
0 Likes
Highlighted
Absent Member.
Absent Member.
Hi mkumar

Through check, the client RH linux server has been installed the telnet server,

# rpm -qa telnet*
telnet-0.17-31.EL4.5
telnet-server-0.17-31.EL4.5
0 Likes
Highlighted
Absent Member.
Absent Member.
Hi,

It looks like only outgoing 5555 is allowed

So we are able to reach cell manager from linux client.

What about incoming trafiic to port 5555.

May you can check this.
0 Likes
Highlighted
Absent Member.
Absent Member.
From clinet serverb (RH Linux in DMZ), it could ping svra (cell mgr)and telenet svra 5555.

From svra D/P cell mgr it could ping the serverb, but could not telnet serverb via port 5555.

# telnet serverb 5555
Trying...
telnet: Unable to connect to remote host: Connection refused

From svra it could telnet and ping another RH linux serverc, serverd ... in DMZ

# telnet serverc 5555
Trying...
Connected to serverc
Escape character is '^]'.
HP OpenView Storage Data Protector A.05.50: INET, internal build PHSS_36290/PHSS_36291/DPSOL_00269, built on Mon 10 Sep 2007 09:27:33 AM EDT
Connection closed by foreign host.

serverb and serverc in different VLAN 10.250 and 10.254.

Is there any problem on network side.

-G

0 Likes
Highlighted
Absent Member.
Absent Member.
If netstat -an | grep 5555 shows nothing, then /etc/xinetd.d/omni is not there, and so it'll never work.

How did you do the install? This is 5.5, so there's no RPM package to know if the CORE packet installed or not. Is /usr/omni/bin/inet even there?

Thanks,
Scott
0 Likes
Highlighted
Absent Member.
Absent Member.
Hi Scott

Thanks for you reply.
netstat -an | grep 5555 nothing is not a big problem, you are right, it caused by omni Disk Agent haven't installed into client. If done the installation then 5555 will be listened. I have installed the IS - Installation Server into cell mgr server svra, so normaly, I installed the client omni agent through cell mgr "client add", from cell mgr push client software to client side.

For this case, I could not telnet client via 5555, so I could not complete the client adding.

# telnet serverb(client) 5555
error mssage is not time out etc. from network log file they check out from cell mgr has a succeful connect to serverb client through port 5555, but linux client side gave a "Connection refused" message.

So, I think it must be has some wrong configurations on liux serverb side, how to fix it let the serverb doen't respons "Connection refused" to cell mgr.

Thanks

-Gary
0 Likes
Highlighted
Absent Member.
Absent Member.
How to let port 5555 be listened, this problem I have known the solution, after Data protector client Disk agent be installed into the client the 5555 will be listened.

I will open a new thread for my current issue that telnet client_server 5555, telnet: Unable to connect to remote host: Connection refused.

Thanks a lot.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.