Of course, the advantage of using a
non-standard port might be less likelihood of a test program or IOC making an inadvertent
change to your operational system.
Now that firewalls and CA gateways are
more common perhaps the risk is lower, but still very possible considering that
at many sites users are routinely logged into computers that are behind the
firewall.
I think that there would only be benefit
if the typical log in state was set up to use the default port, and only a
special operator login used the non-default port?
In the future I would like to see EPICS system
complexity managed with domains. You might specify the non-default domain of
the channel when you create a channel. Domains would be well isolated from each
other, but gateways might be used to safely interconnect domains. Domains names
instead of port numbers might also be much easier for the user.
So anyways, the number of gateway isolated
domains {LINAC, RING, WHATEVER} might be a related issue (because at present if
these domains share the same LAN (subnet) they will need to be accessed using
unique port numbers).
Jeff
Hi,
There are environment variables thru which we can change the TCP/UDP
ports used by CA.
EPICS_CA_REPEATER_PORT
EPICS_CA_SERVER_PORT
I saw someone had recommended to use the non-default port. I think I
also saw someone on tech-talk to recommend using the default.
So what is your opnion?
Thanks.
Sheng