View Single Post
Old 27th February 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default

Dumping files from OpenBSD box through the network to another box. In your case, Apple box

I will use two OpenBSD boxes.
parmenides is the one whose "/home' directory will be dumped through the network to host hercules.

On hercules start nc (netcat) to listen for data on port 4000 and redirect the output to file:

Code:
j65nko@hercules[~] nc -l 4000 >firewall.dump
So hercules will receive the dumpfile. In your case this will a file, on your Apple box, on your mounted HFS+ external USB disk.

Now I ssh in to parmenides, become root and run the dump
Code:
j65nko@parmenides[~] su - root
Password: xxxxxxxxxxxxxxx

root@parmenides[~] dump -0 -a -u -f - /home  | nc hercules.utp.xnet 4000
  DUMP: Ignoring u flag for subdir dump
  DUMP: Dumping sub files/directories from /
  DUMP: Dumping file/directory /home
  DUMP: Date of this level 0 dump: Sun Feb 27 07:08:46 2011
  DUMP: Date of last level 0 dump: the epoch
  DUMP: Dumping /dev/rwd0a (/) to standard output
  DUMP: mapping (Pass I) [regular files]
  DUMP: mapping (Pass II) [directories]
  DUMP: estimated 131807 tape blocks.
  DUMP: Volume 1 started at: Sun Feb 27 07:08:46 2011
  DUMP: dumping (Pass III) [directories]
  DUMP: dumping (Pass IV) [regular files]
  DUMP: 1.66% done, finished in 4:56
  DUMP: 3.32% done, finished in 4:52
On parmenides a check with file(1)
Code:
j65nko@hercules[~]file firewall.dump
                                        
firewall.dump: new-fs dump file (little endian), This dump Sun Feb
27 07:08:46 2011, Previous dump Thu Jan  1 01:00:00 1970, Volume
1, Level zero, type: tape header, Label none, Filesystem a subset
of /, Device /dev/wd0a, Host parmenides.utp.xnet, Flags 3
You will notice that the OpenBSD dump can do something what other dumps cannot: make a dump of a sub-directory, instead on a complete file system. With one limitation, a sub-directory dump only can be level 0. But it is a nice way to test your backup strategy
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote