wiki:gridftp
Last modified 9 years ago Last modified on 10/27/09 14:15:10

Gridftp

The !Gridftp implementation in dCache supports !Gridftp protocols v1 and GridFTP v2.

How to make all outgoing connections to be proxied through the door?

There is a hidden option to make all read requests from an external site to go through the griftp doors. You will need to edit the gridftpdoor.batch file and add -allow-relay=true.

Example:

"
create dmg.cells.services.login.LoginManager GFTP-${thisHostname}-186subnet 
            "${gsiFtpPortNumber} 
             -listen=130.199.186.240 
             -export 
             diskCacheV111.doors.GsiFtpDoorV1 
             -prot=raw 
             -clientDataPortRange=${clientDataPortRange} 
             -poolProxy=${gsiftpPoolProxy}  
             -poolManager=${gsiftpPoolManager}  
             -root=${ftpBase} 
             -maxLogin=${gsiftpMaxLogin} 
             -brokerUpdateTime=5 
             -protocolFamily=gsiftp 
             -protocolVersion=1.0.0 
             -loginBroker=LoginBroker 
             -space-reservation=${spaceReservation} 
             -space-reservation-strict=${spaceReservationStrict} 
             -perfMarkerPeriod=${performanceMarkerPeriod} 
             -poolManagerTimeout=${gsiftpPoolManagerTimeout} 
             -poolTimeout=${gsiftpPoolTimeout} 
             -pnfsTimeout=${gsiftpPnfsTimeout} 
             -maxRetries=${gsiftpMaxRetries} 
             -maxStreamsPerClient=${gsiftpMaxStreamsPerClient} 
             -defaultStreamsPerClient=${gsiftpDefaultStreamsPerClient} 
             -deleteOnConnectionClosed=${gsiftpDeleteOnConnectionClosed} 
             -use-gplazma-authorization-cell=${useGPlazmaAuthorizationCell} 
             -delegate-to-gplazma=${delegateToGPlazma} 
             -use-gplazma-authorization-module=${useGPlazmaAuthorizationModule} 
             -gplazma-authorization-module-policy=${gplazmaPolicy} 
             -io-queue=${gsiftpIoQueue} 
             -kpwd-file=${kpwdFile} 
             -permission-handler=${permissionHandler} 
             -aclTable=${aclTable} 
             -aclConnDriver=${aclConnDriver} 
             -aclConnUrl=${aclConnUrl} 
             -aclConnUser=${aclConnUser} 
             -aclConnPswd=${aclConnPswd} 
             -stageConfigurationFilePath=${stageConfigurationFilePath} 
             -meta-data-provider=${PermissionHandlerDataSource} 
             -overwrite=${overwriteEnabled} 
             -allowPassivePool=${gsiftpAllowPassivePool} 
             -tlog=${FtpTLogDir} 
             -allow-relay=true 
"