HPE Community
Operating System - HP-UX
1833327 Members
3170 Online
110051 Solutions
New Discussion

Re: rcp problem

 
Radhakrishnan Venkatara
Trusted Contributor

‎03-27-2002 12:37 AM

‎03-27-2002 12:37 AM

rcp problem

hi admins,

we have blocked netbios sessions port on router firewall ie. 137,138,139 .
but i getting error in rcp
rcp:connection timed out.
But rcp ,rlogin runs on 512,513,514 port.
i can telnet to the address but i couldn't do rcp or rlogin.

if i open the ports 137,138,139 i can do rlogin.

Is rcp or rlogin uses nbsessions for communications.

please throw some light on this

radhakrishnan
Negative thinking is a highest form of Intelligence
0 Kudos
Reply
11 REPLIES 11
K.Vijayaragavan.
Respected Contributor

‎03-27-2002 12:50 AM

‎03-27-2002 12:50 AM

Re: rcp problem

Hi,

Are you doing rcp,rlogin from a (PC or HPUX system ) to a (NTserver or HPUX system)?

Ports used are TCP-512(rexec) ,TCP-513(rlogin),TCP-514(remsh)

-Vijay
"Let us fine tune our knowledge together"
0 Kudos
Reply
Ceesjan van Hattum
Esteemed Contributor

‎03-27-2002 01:18 AM

‎03-27-2002 01:18 AM

Re: rcp problem

RPC wants to bind itself to services like tcp, udp, netbios, ipx, vines and others.

Your ports 137, 138, 139 are very likely the ports of netbios_ns; netbios_dgm and netbios_139.

Mircosoft uses RPC_Binding_Order for defining these during installation. At Unix, you have more sofisticated methods:
$> rpcinfo -s
program version(s) netid(s) service owner
100000 2,3,4 udp,tcp,ticlts,ticotsord,ticots rpcbind superuser
100068 5,4,3,2 udp cmsd superuser
100083 1 tcp ttdbserver superuser

This is my output, yours will likely contain netbios as well. Look at:
man rpcinfo
man 1m rpcbind

Regards,
Ceesjan
0 Kudos
Reply
Radhakrishnan Venkatara
Trusted Contributor

‎03-27-2002 02:56 AM

‎03-27-2002 02:56 AM

Re: rcp problem

hi,

i am using a telnet connection from a PC to HP server from a HP server i am doing rcp and rlogin to other HP server.

radhakrishnan
Negative thinking is a highest form of Intelligence
0 Kudos
Reply
K.Vijayaragavan.
Respected Contributor

‎03-27-2002 03:12 AM

‎03-27-2002 03:12 AM

Re: rcp problem

Hi,

I think it is just because your PC is behind firewall and both the first hpserver nad the second hp server are after firewall.

PC ---- { F/W} ----(hpux srv1)------(hpux srv2)

I suppose that is why enabling and disbaling 137,138udp ports are mattering in your case.

-VIjay
"Let us fine tune our knowledge together"
0 Kudos
Reply
Radhakrishnan Venkatara
Trusted Contributor

‎03-27-2002 03:22 AM

‎03-27-2002 03:22 AM

Re: rcp problem

hi,
my case is different,
my pc and hpserv1 is behind the firewall .

pc--->HpSrV1-->F/W--->HPSrV2

the above is my case.
i connecting to the server which is behind the firewall.
i had the ports 512,513,514 opened in the firewall but still i couldn't connect to other server.
But locally within another HPservers i can do rlogin and rcp.
same Hpserv2 also.i can do rcp rlogin at that site locally to another server.
when connecting thru firewall i am facing the problem

radhakrishnan
Negative thinking is a highest form of Intelligence
0 Kudos
Reply
K.Vijayaragavan.
Respected Contributor

‎03-27-2002 03:35 AM

‎03-27-2002 03:35 AM

Re: rcp problem

Sorry for repeatedly asking for some clarifications instead of giving a valid solution.

If possible pls. clarify one more thing.

What happens if you skip your PC and locally logging into your HP server and do rcp to remote Hp server2.

-Vijay
"Let us fine tune our knowledge together"
0 Kudos
Reply
Radhakrishnan Venkatara
Trusted Contributor

‎03-27-2002 06:35 AM

‎03-27-2002 06:35 AM

Re: rcp problem

hi ,
it is same problem only directly from hp server to hp server thru f/w i couldn't do rlogin/rcp without enabling ports 137,138,139


radhakrishnan
Negative thinking is a highest form of Intelligence
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎03-27-2002 09:58 AM

‎03-27-2002 09:58 AM

Re: rcp problem

Yes, a firewall will normally block the remsh/rcp/rlogin ports and they should remain blocked for security reasons. The 'r' commands are particularly vulnerable as they bypass user authentication (no user or password questions asked). So the best answer is: you don't want to be able to remsh, rlogin or rcp through your firewall.


Bill Hassell, sysadmin
0 Kudos
Reply
K.Vijayaragavan.
Respected Contributor

‎03-27-2002 09:20 PM

‎03-27-2002 09:20 PM

Re: rcp problem

Do you have DNS, NIS configured in one of these Servers?

As I know port 137,138,139 are used for logging into the different domain.

Probably the second hpserver is in a separate domain that is why you need to open ports 137,138,139.

It must be because of DNS.

K.Vijay
"Let us fine tune our knowledge together"
0 Kudos
Reply
Radhakrishnan Venkatara
Trusted Contributor

‎03-27-2002 10:58 PM

‎03-27-2002 10:58 PM

Re: rcp problem

hi,

thanks for ur replies for u.
I had increased the timeout on firewall and enabled tcp/udp for the rlogin/rcp ports.
Now without nb-sessions i can connect to the server.
But for connecting to the server it takes more time than the normal.

radhakrishnan
Negative thinking is a highest form of Intelligence
0 Kudos
Reply
Kenny Chau
Trusted Contributor

‎03-28-2002 01:21 AM

‎03-28-2002 01:21 AM

Re: rcp problem

Please go to this link for information:

http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x40908cc5e03fd6118fff0090279cd0f9,00.html

Regards,
Kenny.
Kenny
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.