351 | | |
352 | | |
| 351 | 9. '''Enable Flash for Flack''' |
| 352 | |
| 353 | Install xinetd: |
| 354 | {{{ |
| 355 | apt-get install xinetd |
| 356 | }}} |
| 357 | |
| 358 | Add this line to /etc/services: |
| 359 | {{{ |
| 360 | flashpolicy 843/tcp # ProtoGENI flashpolicy service |
| 361 | }}} |
| 362 | |
| 363 | Add this file to /etc/xinetd.d as flashpolicy: |
| 364 | |
| 365 | {{{ |
| 366 | # The flashpolicy service allows connections to ports 443 (HTTPS) and 8443 |
| 367 | # (geni-pgch), as well as ports 8001-8002 which may be used by gcf-am |
| 368 | # or related local services. It is harmless to allow these ports via |
| 369 | # flashpolicy if they are closed in the firewall. |
| 370 | service flashpolicy |
| 371 | { |
| 372 | disable = no |
| 373 | id = flashpolicy |
| 374 | protocol = tcp |
| 375 | user = root |
| 376 | wait = no |
| 377 | server = /bin/echo |
| 378 | server_args = <cross-domain-policy> <site-control permitted-cross-domain-policies="master-only"/> <allow-access-from domain="*" to-ports="80,443,5001,5002"/> </cross-domain-policy> |
| 379 | } |
| 380 | }}} |
| 381 | |
| 382 | Restartxinetd |
| 383 | {{{ |
| 384 | sudo service xinetd restart |
| 385 | }}} |