Changes between Version 1 and Version 2 of Internal/SharedNAT


Ignore:
Timestamp:
Jul 28, 2014 5:51:47 PM (10 years ago)
Author:
sklower
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • Internal/SharedNAT

    v1 v2  
    3636
    3737{{{
    38     tb-allow-external $node [<cookietype> [key1 value1] [key 2 value2] .... ]
     38      [<cookietype> [key1 value1] [key 2 value2] .... ]
    3939}}}
    4040
    4141if the cookieype is "shared", then only the keyN valueN pairs will
    42 be entered in virt parameters table, and no pseudonode with vname
     42be entered in virt_parameters table in the testbed database, and no pseudonode with vname
    4343external_ipaddr<N> will be requested by the experiment.
    4444
    45 The CXA backend will examine the virtual parameters whenever an
    46 an ns file is (re-)parsed and will (re-)initialize the risky experiment
    47 table entries for the experiment based on the values for two
    48 keys, namely "nat" and "rdr".
     45The CXA backend will examine the virtual parameters specified above whenever an
     46an ns file is (re-)parsed and will (re-)initialize the risky_experiment
     47table entries in the testbed database, based on the values for two
     48specific keys, namely "nat" and "rdr".
     49
     50The terminology is borrowed from the BSD packet filter; "nat" indicates (towards in the internet) network address translation
     51(for otherwise unroutable testbed nodes), and "rdr" indicates in-bound (toward experiment nodes) port redirection or forwarding.
     52
     53Each of these keys may be specified a maximum of one time.
    4954
    5055The values are a quoted string of whitespace separated targets,
     
    5560modifyexp or endexp is run on the testbed.
    5661
    57 We allow some abbreviations for convience.
     62We allow some abbreviations for convenience.
    5863
    5964For "rdr" targets, one may use triples as in the web page.
     
    7277defaulting to tcp and the <port> default to 0 meaning all ports.
    7378
     79Here's an example of all six forms:
     80
     81{{{
     82        tb-allow-external $node shared nat "192.154.6.22/udp/13 192.154.6.21/25 128.32.112.228" rdr "22 mywebserver/80 othernode/udp/13"
     83}}}
     84
     85This allows any node in the experiment to send traffic to udp port 13 or boss.ucb.deterlab.net (which must be specified by dotted quad,
     86to the SMTP port on 192.154.6.21 and to any TCP port on 128.32.112.228.  hosts on the internet can also connect to an address and
     87port and protocol which will be listed on the experiment page, and variously forward to the SSH port on the node named "node",
     88the SMTP port on the experiment node named "mywebserver" and to the daytime UDP port on the experiment host called "othernode".
     89
     90
    7491== DNS stuff ==
    7592