[omniORB] IIOP communication via Firewall

Sveta Shasharina sveta@txcorp.com
Tue, 23 Oct 2001 11:45:41 -0600 

This is a multi-part message in MIME format.

------=_NextPart_000_0000_01C15BB8.3E0EC530
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit

Hi!

We are trying to play with bidirectional IIOP and ran into the following
problem:
before a client connects to the server, it needs to have a unique ID.  The
next client
too.  How this uniques ID should be set so that the next client does not
bump out
the previous?  Should it be generated from something like the host name or
connection
time etc?  Is there a standard solution?

Thanks!
________________________________________

Svetlana Shasharina -- sveta@txcorp.com
Tech-X Corporation  -- www.techxhome.com
Ph:   (720) 563-0322
Cell: (720) 841-4301


  -----Original Message-----
  From: owner-omniorb-list@uk.research.att.com
[mailto:owner-omniorb-list@uk.research.att.com]On Behalf Of Clement VISSEAUX
  Sent: Monday, October 22, 2001 7:58 AM
  To: omniorb-list-digest
  Subject: [omniORB] IIOP communication via Firewall



  Is it possible to access  CORBA application, distributed over internet,
without modifying client firewall policy ?
  ie : dynamic allocation of socket port via corba is in contradiction with
security firewall policy ?
  in some cases, It is not possible to deploy Corba through client
firewalls, so that proxies have to convert CORBA objects into XML-RPCcalls
or SOAP calls through HTTP

  are we near to implement CORBA firewall traversal  with OmniORB , ( with
the release 4.0 ? , later this year ?, on the never never ? )

  To my opinion, this a major issue regarding the deployement of CORBA
application over internet .
   ( the only other solution to my knowledge , is HTTP tunnelling provided
by Visibroker )

  I know that there is an OMG draft in progress on that topic ( OMG document
orbos/2001-01-02 )

  any clue ?

  thanks





------=_NextPart_000_0000_01C15BB8.3E0EC530
Content-Type: text/html;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Dus-ascii" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.3103.1000" name=3DGENERATOR></HEAD>
<BODY aLink=3D#000088 bgColor=3D#ffffff link=3D#0000ff text=3D#000000 =
vLink=3D#ff0000>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN=20
class=3D056504017-23102001>Hi!</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN=20
class=3D056504017-23102001></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN =
class=3D056504017-23102001>We are=20
trying to play with bidirectional IIOP and ran into the following=20
problem:</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN =
class=3D056504017-23102001>before=20
a client connects to the server, it needs to have a unique ID.&nbsp; The =
next=20
client</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN=20
class=3D056504017-23102001>too.&nbsp; How this uniques ID should be set =
so that=20
the next client does not bump out</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN =
class=3D056504017-23102001>the=20
previous?&nbsp; Should it be generated from something like the host name =
or=20
connection</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN =
class=3D056504017-23102001>time=20
etc?&nbsp; Is there a standard solution?</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN=20
class=3D056504017-23102001></SPAN></FONT>&nbsp;</DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN=20
class=3D056504017-23102001>Thanks!</SPAN></FONT></DIV>
<DIV><FONT color=3D#0000ff face=3DArial size=3D2><SPAN =
class=3D056504017-23102001>
<P><FONT =
size=3D2>________________________________________<BR><BR>Svetlana=20
Shasharina -- sveta@txcorp.com<BR>Tech-X Corporation&nbsp; --=20
www.techxhome.com<BR>Ph:&nbsp;&nbsp; (720) 563-0322<BR>Cell: (720)=20
841-4301<BR></FONT></P></SPAN></FONT></DIV>
<BLOCKQUOTE style=3D"MARGIN-RIGHT: 0px">
  <DIV align=3Dleft class=3DOutlookMessageHeader dir=3Dltr><FONT =
face=3DTahoma=20
  size=3D2>-----Original Message-----<BR><B>From:</B>=20
  owner-omniorb-list@uk.research.att.com=20
  [mailto:owner-omniorb-list@uk.research.att.com]<B>On Behalf Of =
</B>Clement=20
  VISSEAUX<BR><B>Sent:</B> Monday, October 22, 2001 7:58 =
AM<BR><B>To:</B>=20
  omniorb-list-digest<BR><B>Subject:</B> [omniORB] IIOP communication =
via=20
  Firewall<BR><BR></DIV></FONT>&nbsp; <BR>Is it possible to access&nbsp; =
CORBA=20
  application, distributed over internet,&nbsp; without modifying client =

  firewall policy ?=20
  <P>ie :&nbsp;dynamic allocation of socket port via corba is in =
contradiction=20
  with security firewall policy ? <BR>in some cases, It is not possible =
to=20
  deploy Corba through client firewalls, so that proxies have to convert =

  CORBA&nbsp;objects into XML-RPCcalls or SOAP&nbsp;calls through HTTP=20
  <P><U>are we near to implement CORBA firewall traversal&nbsp; with =
OmniORB , (=20
  with the release 4.0 ? , later this year ?, on the never never ? )</U> =

  <P>To my opinion, this a major issue regarding the deployement of =
CORBA=20
  application over internet . <BR>&nbsp;( the only other solution to my=20
  knowledge , is HTTP tunnelling provided by Visibroker )=20
  <P>I know that there is an OMG draft in progress on that topic ( OMG =
document=20
  orbos/2001-01-02 )=20
  <P>any clue ?=20
  <P>thanks <BR>&nbsp; <BR>&nbsp; <BR>&nbsp; =
</P></BLOCKQUOTE></BODY></HTML>

------=_NextPart_000_0000_01C15BB8.3E0EC530--