g+
g+ Communities
Argonne National Laboratory

Experimental Physics and
Industrial Control System

1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  <20132014  Index 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  <20132014 
<== Date ==> <== Thread ==>

Subject: Re: unable to tunnel CA through ssh tunnel
From: Till Straumann <strauman@slac.stanford.edu>
To: Andre Charbonneau <Andre.Charbonneau@nrc-cnrc.gc.ca>
Cc: "tech-talk@aps.anl.gov" <tech-talk@aps.anl.gov>
Date: Mon, 28 Jan 2013 08:40:26 -0800
If you don't want to have to list all your IOCs as name servers and but take advantage of the UDP parts of the CA protocol (or if you use an older version of EPICS base) then
you can use the CA-proxy which tunnels CA/UDP via ssh, too:

http://www.slac.stanford.edu/~strauman/epics/caxy/

HTH
- Till
On 01/28/2013 06:22 AM, Andre Charbonneau wrote:
Greetings everyone,

I'm trying to do something rather simple but can't seem to get it to work.

What I'm trying to do is the have my CA client to connect a CA server
via a SSH tunnel.  The CA client is running on a Windows system, and the
SSH tunnel is created using Putty.

Creating the SSH tunnel for port 5064 between the server and client,
using PUTTY, seems to work fine.

Then I set my Windows environment to have the following (as documented
at http://www.aps.anl.gov/epics/base/R3-14/12-docs/CAref.html#Environmen):

EPICS_CA_NAME_SERVERS=<localhost_ip_address>:5064
EPICS_CA_ADDR_LIST=
EPICS_CA_AUTO_ADDR_LIST=NO

Then when I try to access one of my PVs using the CA client, I get the
following error message:

      C:\program files\EPICS Windows Tools>caget motorController:TestBox_1:C1
      CA.Client.Exception...............................................
          Warning: "Empty PV search address list"
          Source File: ..\udpiiu.cpp line 359
          Current Time: Fri Jan 25 2013 16:30:15.057180376
      ..................................................................
      Channel connect timed out: 'motorController:TestBox_1:C1' not found.
At this point I'm not sure if any traffic is actually going through the
SSH tunnel or not. :-|

Is a second tunnel for port 5065 also required?


Anyone managed to get a similar setup working?

Any information about this would be much appreciated.

Thanks,
   Andre


References:
unable to tunnel CA through ssh tunnel Andre Charbonneau

Navigate by Date:
Prev: Re: memory and vxWorks based IOCs Tim Mooney
Next: Re: memory and vxWorks based IOCs James F Ross
Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  <20132014 
Navigate by Thread:
Prev: Re: unable to tunnel CA through ssh tunnel (SOLVED) Andre Charbonneau
Next: memory and vxWorks based IOCs James F Ross
Index: 1994  1995  1996  1997  1998  1999  2000  2001  2002  2003  2004  2005  2006  2007  2008  2009  2010  2011  2012  <20132014 
ANJ, 31 Jan 2014 Valid HTML 4.01! · Home · News · About · Base · Modules · Extensions · Distributions · Download ·
· EPICSv4 · IRMIS · Talk · Bugs · Documents · Links · Licensing ·