Changes between Version 90 and Version 91 of HowTo/LoginToNodes
- Timestamp:
- 06/07/17 12:10:47 (7 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
HowTo/LoginToNodes
v90 v91 223 223 Some hosts in GENI are behind a firewall. In most cases where nodes are behind a firewall, there is one or more machines that are accessible from the public internet that can be used as "stepping stones" to access these machines, i.e. you should login to them first and then login to the hosts that are behind the firewall. Currently in GENI the two most common cases of nodes that are behind a firewall are: 224 224 * '''Wide Area ProtoGENI hosts in Internet 2 !PoPs''' : Any node in Utah can be used as a "stepping stone". If your slice doesn't already have a host in Utah, then you should add a VM in Utah that you will use for this purpose. 225 * '''Mesoscale hosts in some campuses''': If you are using nodes in [wiki:TangoGENI Mesoscale] that are behind a firewall, you can use ops.pgeni.gpolab.bbn.com as a "stepping stone". You can login to ops.pgeni.gpolab.bbn.com using the your pgeni credentials file as your private key.226 Once you have determined which host you will use as your stepping stone (pub_host from now on) to get to the host behind the firewall(priv_host from now on) , you have several options:225 * ~~~'''Mesoscale hosts in some campuses''': If you are using nodes in [wiki:TangoGENI Mesoscale] that are behind a firewall, you can use ops.pgeni.gpolab.bbn.com as a "stepping stone". You can login to ops.pgeni.gpolab.bbn.com using the your pgeni credentials file as your private key. 226 Once you have determined which host you will use as your stepping stone (pub_host from now on) to get to the host behind the firewall(priv_host from now on)~~, you have several options: 227 227 1. '''Recommended''' Use the `-A` ssh option to enable forwarding of the authentication agent. So try : 228 228 {{{