|
|
| Author |
Message |
|
| Guest |
 Posted: Thu Feb 22, 2007 12:46 pm |
 |
|
|
Guest
|
I have a network setup where we have an 'inside' and 'outside' network
with a port-filtering router inbetween. The router does not filter any
ports from inside to outside, but only allows 4 ports from outside to
in, those being 22 (ssh), 25 (smtp) and 2 others.
I've been trying to get a 2 node erlang setup working. The connection
from inside to outside works fine, which tells me that the handshake
that takes place within the epmd's seems to be this:
1. inside epmd connects to outside epmd
2. outside epmd tells inside epmd to go away and come back on port XXXX
3. inside epmd then connects to port XXXX
My question is this - is there any hope at all of getting the connection
from outside to inside working?
And my comment is ... why didn't / doesn't epmd work like most other
super-daemons? Like sendmail and inetd ... or like wildfire and
jabberd2 ... 
Regards,
Brian Safford
Senior Consultant
EDS - Managed Messaging Services
_______________________________________________
ejabberd mailing list
ejabberd@jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Post recived from mailinglist |
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 1:00 pm |
|
|
|
Guest
|
On 2/22/07, Safford, Brian <brian.safford@eds.com> wrote:
> I have a network setup where we have an 'inside' and 'outside' network
> with a port-filtering router inbetween. The router does not filter any
> ports from inside to outside, but only allows 4 ports from outside to
> in, those being 22 (ssh), 25 (smtp) and 2 others.
>
> I've been trying to get a 2 node erlang setup working. The connection
> from inside to outside works fine, which tells me that the handshake
> that takes place within the epmd's seems to be this:
>
> 1. inside epmd connects to outside epmd
> 2. outside epmd tells inside epmd to go away and come back on port XXXX
> 3. inside epmd then connects to port XXXX
>
> My question is this - is there any hope at all of getting the connection
> from outside to inside working?
You need to open port 5269 (TCP) in both directions. Also take a look
at the firewall section in the guide.
> And my comment is ... why didn't / doesn't epmd work like most other
> super-daemons? Like sendmail and inetd ... or like wildfire and
> jabberd2 ...
How do you mean? Do you want something like this?:
http://ejabberd.jabber.ru/node/1117
--
Mvg, Sander Devrieze.
_______________________________________________
ejabberd mailing list
ejabberd@jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Post recived from mailinglist |
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 1:29 pm |
|
|
|
Guest
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 2:50 pm |
|
|
|
Guest
|
I'll try your suggestion.
|
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 3:04 pm |
|
|
|
Guest
|
I don't think port 5269 is used by erlang to handle node-to-node
communication.
I'm going to try Mickael's suggestion to use the inet_dist_listen_min
and inet_dist_listen_max parameters. I think this will limit me to a
2-node setup, but that should be okay for now.
Thanks,
Brian
-----Original Message-----
From: ejabberd-bounces@jabber.ru [mailto:ejabberd-bounces@jabber.ru] On
Behalf Of Sander Devrieze
Sent: Thursday, February 22, 2007 8:00 AM
To: ejabberd@jabber.ru
Subject: Re: [ejabberd] limited firewall ports
On 2/22/07, Safford, Brian <brian.safford@eds.com> wrote:
> I have a network setup where we have an 'inside' and 'outside' network
> with a port-filtering router inbetween. The router does not filter
> any ports from inside to outside, but only allows 4 ports from outside
> to in, those being 22 (ssh), 25 (smtp) and 2 others.
>
> I've been trying to get a 2 node erlang setup working. The connection
> from inside to outside works fine, which tells me that the handshake
> that takes place within the epmd's seems to be this:
>
> 1. inside epmd connects to outside epmd 2. outside epmd tells inside
> epmd to go away and come back on port XXXX 3. inside epmd then
> connects to port XXXX
>
> My question is this - is there any hope at all of getting the
> connection from outside to inside working?
You need to open port 5269 (TCP) in both directions. Also take a look at
the firewall section in the guide.
> And my comment is ... why didn't / doesn't epmd work like most other
> super-daemons? Like sendmail and inetd ... or like wildfire and
> jabberd2 ...
How do you mean? Do you want something like this?:
http://ejabberd.jabber.ru/node/1117
--
Mvg, Sander Devrieze.
_______________________________________________
ejabberd mailing list
ejabberd@jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
_______________________________________________
ejabberd mailing list
ejabberd@jabber.ru
http://lists.jabber.ru/mailman/listinfo/ejabberd
Post recived from mailinglist |
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 3:50 pm |
|
|
|
Guest
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 4:12 pm |
|
|
|
Guest
|
If I am running one node on the 'outside' machine and one node on the 'inside' machine ... do I need to specify the same min-max port numbers on both nodes?
|
|
|
| Back to top |
|
| Guest |
| Posted: Thu Feb 22, 2007 8:06 pm |
|
|
|
Guest
|
|
| Back to top |
|
|
|
All times are GMT
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum
|
|
|
Digg It
Del.icio.us
Reddit
Facebook
Stumble Upon
Technorati
