Experimental Physics and
Industrial Control System

On Thursday 04 November 2010 11:25:52 Eric Norum wrote:

Thanks.  That does it.
Here's what I now have.

-A RH-Firewall-1-INPUT -s 128.3.128.0/22 -p udp --dport 5064 -j ACCEPT
-A RH-Firewall-1-INPUT -s 128.3.128.0/22 -p udp --dport 5065 -j ACCEPT
-A RH-Firewall-1-INPUT -s 128.3.128.0/22 -p tcp --dport 5064 -j ACCEPT
-A RH-Firewall-1-INPUT -s 128.3.128.0/22 -p tcp --dport 5065 -j ACCEPT
-A RH-Firewall-1-INPUT -s 128.3.128.0/22 -p udp --sport 5064 -j ACCEPT

Maybe this needs to go in either the application developer's guide or the
release notes.

Since this is a Channel Access issue I think it makes more sense to put it in
the CA Reference Manual.  Note that the "RH-Firewall-1-INPUT" part is probably
distribution-specific (I suspect the "RH" stands for Red Hat), and there's
also a subnet-specific part to those commands.

Are *all* of those lines really necessary though?  It would be nice to have
something that says "CA clients need ...", "a soft IOC needs ..." etc.

- Andrew

Replies:

Re: Firewall (iptables) issues? Eric Norum

References:

Firewall (iptables) issues? Eric Norum

Re: Firewall (iptables) issues? Darren S. Dale

Re: Firewall (iptables) issues? Eric Norum

Re: Firewall (iptables) issues? Andrew Johnson

Navigate by Date:

Prev: Re: base 3-14-11 and breakpoint tables for ai and ao Ralph Lange

Next: Re: Firewall (iptables) issues? Eric Norum

Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  <2010>  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  2021  2022  2023  2024 

Navigate by Thread:

Prev: Re: Firewall (iptables) issues? Andrew Johnson

Next: Re: Firewall (iptables) issues? Eric Norum

Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  <2010>  2011  2012  2013  2014  2015  2016  2017  2018  2019  2020  2021  2022  2023  2024