This thread helps customers to setup IPTABLES in Zmanda. This will ensure proper rules are set in firewall (IPTABLES) to allow Zmanda to work smoothly. There are two methods to use IPTABLES for Zmanda backup process.

Method 1:

IP tables connection using tracking module for Amanda

This approach uses the IPTABLE connection-tracking module for Amanda called as ip_conntrack_amanda. The connection-tracking module finds the connection ports by searching for the "CONNECT" command in the packet and mark them as RELATED to the original outgoing connection. (You may also add ip_nat_amanda to use the connection-tracking module in a NAT environment).

  • To load ip_conntrack_amanda(Fedora/Redhat distributions), /etc/sysconfig/iptables_config file should have a line entry as below


  • Add an iptables ruleset to allow ESTABLISHED and RELATED packets.

    # iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT

  • Restart service

    # service iptables restart

Method 2:

IPTABLES rulesets without tracking module for Amanda

  • Set input filtering on the backup server for the ports used

    iptables -A INPUT -p tcp --dport 11000:11040 -j ACCEPT

  • Set input filtering on Amanda client for the ports used

    # iptables -A INPUT -p udp --dport 10080 -j ACCEPT

    # iptables -A INPUT -p tcp --dport 11000:11040 -j ACCEPT

************************************************** ************************************************** ******************

Please follow the above steps to fix the issue. In case if you need any assistance, kindly contact support. Support can be reached @ [email protected] or call us @ 888-496-2632 (U.S.)/ 408-732-3208 (INTL)