Changes between Version 4 and Version 5 of ESGFNodeInstallation


Ignore:
Timestamp:
Nov 9, 2013 3:19:22 PM (9 years ago)
Author:
antonio
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • ESGFNodeInstallation

    v4 v5  
    1 == Pre-requisites ==
    2 === TCP and UDP ports firewall configuration ===
    3 = ESGF Node Port description =
    4 [[FootNote(http://devel.esgf.org/wiki/ESGFNode/Ports)]]
     1= Pre-requisites =
     2== TCP and UDP ports firewall configuration [[FootNote(http://devel.esgf.org/wiki/ESGFNode/Ports)]] ==
     3
     4=== Corporate Firewall ===
    55
    66||'''Port''' ||'''Direction''' ||'''Type''' ||'''Application''' ||'''Description''' ||
     
    1818||443 ||out ||tcp ||esg-publisher ||Local secure connection to THREDDS server (e.g., to restart the application) and to the idp ||
    1919
    20 == Installer ==
     20=== IPTables configuration ===
     21Add these rules to the IPTables configuration file, i.e. `/etc/sysconfig/iptables`
    2122
    22 The installer further requires outbound ports 20 and 21 to be open so it can download the required libraries.
     23{{{
     24-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
     25-A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
     26-A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT
     27-A INPUT -m state --state NEW -m tcp -p tcp --dport 2811 -j ACCEPT
     28-A INPUT -m state --state NEW -m tcp -p tcp --dport 2812 -j ACCEPT
     29-A INPUT -m state --state NEW -m tcp -p tcp --dport 8984 -j ACCEPT
     30-A INPUT -m state --state NEW -m tcp -p tcp --dport 8983 -j ACCEPT
     31-A INPUT -m state --state NEW -m tcp -p tcp --dport 60000:61000 -j ACCEPT
     32}}}
    2333
    24 === Some notes ===
    25  * '''BDM''' ('''B'''ulk '''D'''ata '''M'''over): It is used for moving data from one node to other ([[https://wiki.ucar.edu/display/esgcet/Bulk+Data+Movement|Use cases]],[[http://esg-pcmdi.llnl.gov/internal/security-documents-meetings-action-items/bdm|Security Architecture]])
     34and restart IPTables services
    2635
    27 [http://devel.esgf.org/wiki/ESGFNode/Ports]
     36{{{
     37$ services iptables restart
     38}}}
     39
    2840=== Add sourceforge RPM repo ===
    2941=== Create the `esgf` user===