Re: callbacks in TAO
- From: Phil Mesnier <mesnier_p@xxxxxxxxxx>
- Date: Sat, 17 Sep 2011 10:58:34 -0500
On 09/15/2011 02:51 AM, graham wrote:
On Sep 15, 5:07 am, Rob Ratcliff<r...@xxxxxxxxxxxxx> wrote:Graham,
Is it possible to specify a specific or range of ports to be used by a
callback object exported from a server. The callback is going back to
the client and it *must* use a fixed/range of ports in order to pass
thru the firewall. I'm using the latest version of TAO/ACE. Is there a
demo that does this?
Thanks for the replies. I'll post to ACE/TAO group as well. They
cannot use bidirectional iiop cos they use the port/connection as part
of their security identification. It has to be available otherwise
everybody would have firewall issues.
Can you elaborate more on the security identification scheme?
I looked up the various options in the TAO user guide and noticed that TAO does support a port range option with the ORBEndpoint
option such as:
myserver -ORBEndpoint iiop://host:5000/portspan=10 (ports 5000-5009)
but I don't know if that constrains callback objects. I would hope so.
-ORBEndpoint is deprecated, so see the new -ORBListenEndpoints option as well.
If you figure it out, please post the solution back to the list! :-)
Its legacy code thats in place for the authentication. They have
kerberos in place but in parallel they monitor/use the callbacks port
to determine whos connected and since when. I'll have to ask on the
ace/tao users forum. I'll post you the code when I get it up and
running (assuming I do of course :)
I better switch from -ORBEndpoint to -ORBListenEndpoints ASAP.
Didn't know that was deprecated.
It's not deprecated, just not portable. The two options invoke the same code, its just that TAO had -ORBEndpoint before the spec defined -ORBListenEndpoints. I don't think there is any need to strip out the old option.
Regarding your problem at hand, TAO does not have a way to bind a client side address to a port, which is what it sounds like you want to do. Generally, client-side port binding is considered a bad thing to do, particularly if the server side is also binding to specific ports. However, there is nothing technically preventing it, so if you would like to fund some research one of the commercial support providers to research it, perhaps a solution could be found.
Principal Software Engineer and Partner, http://www.ociweb.com
Object Computing, Inc. +01.314.579.0066 x225
- Re: callbacks in TAO
- From: Rob Ratcliff
- Re: callbacks in TAO
- Prev by Date: Re: callbacks in TAO
- Next by Date: Re: callbacks in TAO
- Previous by thread: Re: callbacks in TAO
- Next by thread: Re: callbacks in TAO