Changes between Version 6 and Version 7 of shorewall-with-orca

Show
Ignore:
Timestamp:
07/26/11 11:31:02 (8 years ago)
Author:
ibaldin (IP: 152.54.9.21)
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • shorewall-with-orca

    v6 v7  
    44 
    55Support for [wiki:shorewall-dnat-proxy Shorewall DNAT proxy] is integrated into ORCA's EC2 handler that operates on Eucalyptus/NEuca installations. All configuration parameters are located in the ec2.site.properties file. Parts of that file relevant to Shorewall proxy are shown below. 
     6 
     7== Configuration ==  
     8 
     9After following the INSTALL file instructions for Shorewal DNAT proxy, make sure to add the user under which orca runs to group 'shorewall' on the host where shorewall and DNAT proxy are installed. Be sure that the public SSH key of that user is in the '.ssh/authorized_keys' on the Shorewall host (allowing password-less login) and put the private key under /opt/orca/config/orca-proxy-ssh-key. 
     10 
     11To test verify that you can SSH as ORCA user from the host with the AM to the shorewall host without being prompted for a password: 
     12{{{ 
     13$ ssh -i /opt/orca/config/orca-proxy-ssh hostname.where.shorewall.is 
     14}}} 
     15 
    616 
    717== Proxy configuration (Camano 3.0+) ==