[AG-TECH] NAT and bridge traffic

Nagykaldi, Zsolt F. (HSC) Zsolt-Nagykaldi at ouhsc.edu
Tue Sep 11 15:26:56 CDT 2007 

 
Although I am all for programming and in-depth understanding of technology myself, I realized that the problem with the "geeks only" approach in the real world is that many organizations with a limited technical background need either a standard or a fool-proof setup for reliable day-to-day operation . The current open-source AG architecture is geared toward large, well-equipped, and well manned nodes where AG administrators can and are willing to fill in all these technical gaps. In reality however, the AG community is rapidly shifting toward a much more diverse user group where users of different shapes and sizes would like to participate with very substantial differences in experience, technical capabilities, and available infrastructure. I my opinion, the open-source AG solution (that has great potential and a bright possible future) will survive long-term only, if we are willing and able to accept the paradigm-shift and produce more solutions that are at least close to "turn-key", especially regarding new security challenges. A great example is the OpenVPN / Bridge Server hybrid I mentioned, developed by Joe Stone.
 
 
Zsolt
 
 
---
 
Zsolt Nagykaldi, PhD
Assistant Professor of Research
Clinical IT Specialist
 
University of Oklahoma Health Sciences Center
Department of Family & Preventive Medicine
900 N.E. 10th Street
Oklahoma City, OK 73104
 
Phone: (405) 271-8000 ext.1-32208
Fax:     (405) 271-2784

________________________________

From: owner-ag-tech at mcs.anl.gov on behalf of Thomas D. Uram
Sent: Tue 9/11/2007 2:11 PM
To: Jeremy Mann
Cc: George Estes; ag-tech at mcs.anl.gov
Subject: Re: [AG-TECH] NAT and bridge traffic



You can use a narrowed port range by looking at the port range used by the bridge
you want to use.  This is found in the VenueClient under Tools->Preferences->Bridging; 
each bridge is listed with its related port range (the rightmost column in the list, you may
need to stretch the preferences window to see it).

The default port range for unicast bridges is 50000-52000, but some bridges do use
alternate port ranges so you should check.

Tom


On 9/11/07 10:13 AM, Jeremy Mann wrote: 

	George, I've used AG from home several times and I'm behind a Linksys
	router. All that you have to do is forward the bridge ports of the
	Bridge Server to your internal IP. Generally, I forward 30000 to 65535
	to my internal IP. Now if you're behind NAT in a campus environment it
	may be a bit tricky to get the networking folks to forward those ports
	to your machine.
	
	
	On 9/11/07, George Estes <gestes at ncsa.uiuc.edu> <mailto:gestes at ncsa.uiuc.edu>  wrote:
	  

		Hello,
		
		  Could someone with experience in this area  tell me the issues/problems with receiving traffic from a bridge server if I'm behind a NAT.  I've looked through the ag-tech mailing list and there's talk of problems but I can't find specifics.
		
		Thanks,
		George
		
		
		    

	  

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.mcs.anl.gov/pipermail/ag-tech/attachments/20070911/a1718711/attachment.htm>

More information about the ag-tech mailing list