Experimental Physics and
Industrial Control System
| 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 <2021> 2022 2023 2024 | Index | 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 <2021> 2022 2023 2024 |
| <== Date ==> | <== Thread ==> |
|---|
| Subject: | Re: Need clarification on UDP Broadcasting to multiple IOCs on same PC |
| From: | Ralph Lange via Tech-talk <tech-talk at aps.anl.gov> |
| To: | EPICS Tech Talk <tech-talk at aps.anl.gov> |
| Date: | Sat, 11 Dec 2021 12:09:03 +0100 |
Thanks Ralph for the explanations, some follow up below:
Then if I also have the cagateway setup for EPICS_CA_ADDR_LIST=localhost also shouldn’t the client for the gateway also end up using the firewall iptables rule? Cant seem to figure out why the client side of the gateway doesn’t seem to use iptables rule then.
The firewall rule is server-side and only needed on hosts that run multiple servers (IOCs or Gateways). Nowhere else.
If your gateway machine is running a single Gateway instance per network interface the Gateway binds to, it does not need to run the firewall rule.
Yes but for this situation I am running phoebus client (or caget) on the same machine as the IOCs (and gateway). If the gateway is binding to say my local ethernet ip 192.168.0.50 and I have phoebus send out its requests to 192.168.0.50 (instead of putting localhost) does the routing go through that interface and trigger the firewall rule or does it just route locally through the loopback and not trigger the rule?
What is the difference then between EPICS_CA_ADDR_LIST=192.168.0.255, EPICS_CA_SERVER_PORT=5064 and using the iptables rule of routing all 5064 udp traffic to 192.168.0.255:5064 instead of say localhost:5064?
These two things are not directly related as they are happening on two different machines.
Your environment settings are for a CA client running on the client host, where the firewall rule does not run.
The firewall rule is running on the server (IOC) host and affecting incoming name resolution requests.
Also note that the firewall rule trick does not work for CA clients on the same host as the multiple IOCs.
In my case I am running the CA Client and Gateway on the same machine for now in development (future iterations will separate these out). I think this is similar to what you mentioned above but I would assume if EPICS_CA_AUTO_ADDR_LIST=NO and EPICS_CA_ADDR_LIST=192.168.0.50 then this still would not trigger the firewall rule if they were running on the same PC?
- Run the IOCs on loopback, i.e. have them all bind their servers only to the loopback interface (i.e. localhost or 127.0.0.1). Configure their client side to use ADDR_LIST=127.255.255.255 and AUTO_ADDR_LIST=NO to allow cross-IOC connections.
- Run the CA Gateway between loopback (client side of the Gateway) and the regular interface. (Configure the Gateway to use ADDR_LIST=127.255.255.255 and AUTO_ADDR_LIST=NO on its client end and use the regular network IP for the server end.)
- Run your clients without any special configuration (to make them go through the Gateway) or with the same client configuration as the IOCs and the Gateway (to connect to the IOCs directly).
I did have another related question that I am running into with the broadcasts. If I have multiple PCs running IOCs with the same named records, is the best way to stop the broadcasts from going out to another hosts IOCs to use the IOC access file?
- References:
- Need clarification on UDP Broadcasting to multiple IOCs on same PC Manoussakis, Adamandios via Tech-talk
- Re: Need clarification on UDP Broadcasting to multiple IOCs on same PC Ralph Lange via Tech-talk
- RE: Need clarification on UDP Broadcasting to multiple IOCs on same PC Manoussakis, Adamandios via Tech-talk
- Re: Need clarification on UDP Broadcasting to multiple IOCs on same PC Ralph Lange via Tech-talk
- RE: Need clarification on UDP Broadcasting to multiple IOCs on same PC Manoussakis, Adamandios via Tech-talk
- Navigate by Date:
- Prev: Re: [Ext] RE: ADEiger Stream stop zmq? Jesse Hopkins via Tech-talk
- Next: RE: [Ext] RE: ADEiger Stream stop zmq? Mark Rivers via Tech-talk
- Index: 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 <2021> 2022 2023 2024
- Navigate by Thread:
- Prev: RE: Need clarification on UDP Broadcasting to multiple IOCs on same PC Manoussakis, Adamandios via Tech-talk
- Next: PyDevice and an IOC Josh Fiddler via Tech-talk
- Index: 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 <2021> 2022 2023 2024
·
Home
·
News
·
About
·
Base
·
Modules
·
Extensions
·
Distributions
·
Download
·
· Search · EPICS V4 · IRMIS · Talk · Bugs · Documents · Links · Licensing ·