GLACIER2ROUTER

NAME

glacier2router − firewall solution for Ice applications

SYNOPSIS

glacier2router −−Ice.Config=config

DESCRIPTION

Glacier2 is the Ice firewall service: it allows clients and servers to securely communicate through a firewall without compromising security. Client-server traffic is fully encrypted using public key certificates and is bidirectional. Glacier2 offers support for mutual authentication as well as secure session management. Glacier2 normally runs on a host in the private network behind a port forwarding firewall, but it can also operate on a host with access to both public and private networks. In this configuration it follows that Glacier2 must have endpoints on each network.

OPTIONS

Glacier2router uses standard Ice configuration properties. The following router configuration properties establish the necessary endpoint and define when a session expires due to inactivity:

Glacier2.Client.Endpoints=tcp −h 5.6.7.8 −p 8000
Glacier2.SessionTimeout=60

The following properties configure a client to use a Glacier2 router:

Ice.Default.Router=Glacier2/router:tcp −h 5.6.7.8 −p 8000
Ice.ACM.Client=0
Ice.MonitorConnections=60
Ice.RetryIntervals=−1

In order for the router to support callbacks from servers, it needs to have endpoints in the private network. The configuration file shown below adds the property Glacier2.Server.Endpoints:

Glacier2.Client.Endpoints=tcp −h 5.6.7.8 −p 8000
Glacier2.Server.Endpoints=tcp −h 10.0.0.1

COPYRIGHT

Copyright (C) 2003-2007 ZeroC, Inc.

This is free software distributed under the GNU GPL. See /usr/share/doc/glacier2/copyright for specific conditions.

SEE ALSO

Further information is available in the book Distributed Programming with Ice by Michi Henning, Mark Spruiell, et al. available as a PDF file in the non-free package zeroc-ice-manual.