Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
It would be nice if the initialization of the data channel could be reversed, so that the SD connects to the FD. This would make the network setup and firewalling much easier in many cases, and make tricks like ssh tunnels no longer necessary. For Example things like SDs being situated behind a NAT gateway would be no problem anymore. We can also tag this as the firewall friendly solution. The default for all clients is still active mode e.g. FD contacts SD but when the DIR and SD are within a firewalled site and the FD is in a DMZ or out on the Internet you can define the client as a passive client and the DIR and SD will contact the FD so you have only socket connections being initiated from the secure site without the need for special resolving tricks (like a split DNS) and/or portforwarders on the firewall that tunnel the traffic from the DMZ or Internet to your SD. This passive mode is implemented for Backups, Restores and Verifies of Jobs. The Director checks the version of the client to make sure it supports the new passive protocol features. Fixes #61: reverse data channel initialization
- Loading branch information
Marco van Wieringen
committed
Feb 17, 2015
1 parent
178b40c
commit 2f80c5e
Showing
27 changed files
with
989 additions
and
438 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.