[INSTRM-532] Tweak Subaru observing machine access to PFS core machines Created: 19/Oct/18 Updated: 04/Dec/19 |
|
| Status: | Open |
| Project: | Instrument control development |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Task | Priority: | Normal |
| Reporter: | cloomis | Assignee: | Yoshida, Hiroshige |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | MCS, Subaru, subaru-personnel | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Description |
|
Also, According to the ACL, GEN2 is permitted to those nodes, on IP level so no TCP control. Kiaina To all, hope this is proper way to respond. Please define Summit networks? Is this common dhcp network provided in the observation room? I have below a list of summit networks and purpose. Sum-inst - dhcp available only for instrumentation Kiaina We need a couple of changes made to access control from the main Subaru observing machines to the main PFS machines. To wit, please open access
Also, to make observing more sane, we ask that the Hilo base and Summit networks be allowed to connect directly to pfs-gw, but ONLY to port 22.
|
| Comments |
| Comment by kyono [ 19/Oct/18 ] |
|
Since successful MCS commissioning run has highest priority, we opened access 133.40.166.0/24 -> 133.40.164.{17,64,86} 133.40.167.0/24-->133.40.164.{17,64,86} as we worked together this afternoon.
For Hilo Base and Summit network, please give us some more time to consider how this should be. It will stay as it is now for MCS commissioning run at least. Eiji |
| Comment by Kiaina Schubert [ 04/Dec/19 ] |
|
to all, I added the following to PFS access-list Kiaina |