[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RSA Comm Test (Weather - JSC) LDM Troubleshooting



Jackie,

>Date: Tue, 31 Jan 2006 16:11:10 -0500
>From: "Petit, Jackie" <address@hidden>
>Organization: Lockheed-Martin Space Operations
>To: "Schaffert, Lowell" <address@hidden>,
>To: "Biggerstaff, Brice A9" <address@hidden>,
>To: Steve Emmerson <address@hidden>
>Subject: RE: RSA Comm Test (Weather - JSC) LDM Troubleshooting

The above message contained the following:

> Here are the 4 files from the Cape.
...

The LDM configuration-file on host ftpsvr.er-rsaiia-unc.int contains the
following:

    allow       ANY     rsaintrf.midds.jsc.nasa.gov

This should be replaced with

    allow       ANY     ^rsaintrf\.midds\.jsc\.nasa\.gov$
    allow       ANY     ^rsaserv\.midds\.jsc\.nasa\.gov$

The periods should be escaped because the third field is, actually, an
extended regular expression (i.e., pattern) and a period will match any
character.  The leading caret and trailing dollar-sign make the pattern
more rigorous, so that it only matches the appropriate hosts.  The
additional entry for "rsaserv" is needed in case the LDM on "ftpsvr"
reverse-resolves the incoming IP address to rsaserv.midds.jsc.nasa.gov
rather than rsaintrf.midds.jsc.nasa.gov (apparently, that host has two
names).  You should verify that the domain name for "rsaserv" is, also,
midds.jsc.nasa.gov before committing to this change.

The two, modified entries above could be consolidated into the single
entry

    allow       ANY     ^rsa[^.]*\.midds\.jsc\.nasa\.gov$

This will allow hosts in the midds.jsc.nasa.gov domain whose name starts
with the string "rsa" to receive data.  Another alternative for any host
in that domain would be

    allow       ANY     \.midds\.jsc\.nasa\.gov$

The exact form is up to you.

Regards,
Steve Emmerson