wiki:gridftp
Last modified 3 years ago

Gridftp

  1. Gridftp
      1. How to make all outgoing connections to be proxied through the door?
    2. External links

The !Gridftp implementation in dCache supports !Gridftp protocols v1 and GridFTP v2.

How to make all outgoing connections to be proxied through the door?

There is a hidden option to make all read requests from an external site to go through the griftp doors. You will need to edit the gridftpdoor.batch file and add -allow-relay=true.

Example: 

"
create dmg.cells.services.login.LoginManager GFTP-${thisHostname}-186subnet 
            "${gsiFtpPortNumber} 
             -listen=130.199.186.240 
             -export 
             diskCacheV111.doors.GsiFtpDoorV1 
             -prot=raw 
             -clientDataPortRange=${clientDataPortRange} 
             -poolProxy=${gsiftpPoolProxy}  
             -poolManager=${gsiftpPoolManager}  
             -root=${ftpBase} 
             -maxLogin=${gsiftpMaxLogin} 
             -brokerUpdateTime=5 
             -protocolFamily=gsiftp 
             -protocolVersion=1.0.0 
             -loginBroker=LoginBroker 
             -space-reservation=${spaceReservation} 
             -space-reservation-strict=${spaceReservationStrict} 
             -perfMarkerPeriod=${performanceMarkerPeriod} 
             -poolManagerTimeout=${gsiftpPoolManagerTimeout} 
             -poolTimeout=${gsiftpPoolTimeout} 
             -pnfsTimeout=${gsiftpPnfsTimeout} 
             -maxRetries=${gsiftpMaxRetries} 
             -maxStreamsPerClient=${gsiftpMaxStreamsPerClient} 
             -defaultStreamsPerClient=${gsiftpDefaultStreamsPerClient} 
             -deleteOnConnectionClosed=${gsiftpDeleteOnConnectionClosed} 
             -use-gplazma-authorization-cell=${useGPlazmaAuthorizationCell} 
             -delegate-to-gplazma=${delegateToGPlazma} 
             -use-gplazma-authorization-module=${useGPlazmaAuthorizationModule} 
             -gplazma-authorization-module-policy=${gplazmaPolicy} 
             -io-queue=${gsiftpIoQueue} 
             -kpwd-file=${kpwdFile} 
             -permission-handler=${permissionHandler} 
             -aclTable=${aclTable} 
             -aclConnDriver=${aclConnDriver} 
             -aclConnUrl=${aclConnUrl} 
             -aclConnUser=${aclConnUser} 
             -aclConnPswd=${aclConnPswd} 
             -stageConfigurationFilePath=${stageConfigurationFilePath} 
             -meta-data-provider=${PermissionHandlerDataSource} 
             -overwrite=${overwriteEnabled} 
             -allowPassivePool=${gsiftpAllowPassivePool} 
             -tlog=${FtpTLogDir} 
             -allow-relay=true 
"
  •  Nordu Grid Patches for the GridFTP door. These are now available in the standard dCache releases.