Project

General

Profile

Actions
History

Leginon Homepage » Leginon Manual » Complete Installation » Network Configuration »

An example of working port-forwarding configuration » History » Revision 10

« Previous | Revision 10/15 (diff) | Next »
Anchi Cheng, 10/25/2013 10:09 PM

An example of working port-forwarding configuration

(Paraphrased from description by Brian J. Gibbens)

For those interested, this is how I set up Leginon on the TF20 in the
Kornberg lab at Stanford with the following configuration:

Local network (192.168.xxx.xxx in this example) can not be accessed directly through
institute network that has internet access before port forwarding.

The computer hosts involved in this port-forwarding configuration:

  1. ScopePC (Windows) - The computer controlling the microscope
    • connected only to local network
    • Static local IP addresses (192.168.200.99 in this example) is set to this host.
  2. SupportPC (Windows) - The computer provided by FEI to protect ScopePC while allow RAPID system support from them through internet.
    • Two network cards are on this computer.
    • Local network Static IP address (192.168.200.100 in this example)
    • Outbound institute network Static IP address (137.131.204.250 in this example)
  3. LeginonMain (Linux) - The computer that runs Leginon processing/database/storage. Could be multiple. Here assumes just 1
    • Institute network Static IP address (137.131.204.500 in this example)

Ethernet cables should be connected like in the figure above.

TCP/IP Gateway Settings on ScopePC
This should be set to the local IP address of the SupportPC like this:

Firewall settings on SupportPC
  • allow communication to both ScopePC and LeginonMain.

Hosts file addition if needed

--Appropriate IP addresses and hostnames added to the hosts files
(C:/WINDOWS/System32/drivers/etc/hosts.txt on Windows PC's and
/etc/hosts on Linux).

  • On ScopePC - list both hostnames of SupportPC and LeginonMain
  • On SupportPC - list both hostnames of ScopePC and LeginonMain
  • On LeginonMain - list only hostname of SupportPC since all communication from ScopePC to LeginonMain through SupportPC will appear to
    come from SupportPC

Install port forwarding program AUTAPF which allows needed host/port specification on SupportPC

Below is a screen shot of how we configured AUTAPF for a test at NRAMM. The hosts are represented as follows:
localdefcon3: the microscope PC running leginon client/launcher
defcon3: the support PC with AUTAPF installed
amilab7: the remote linux running main leginon

Go up

Updated by Anchi Cheng about 11 years ago · 10 revisions