| 1 | | = GridFTP server installation = |
| 2 | | * It is recommended to take the gridFTP server from the IGE (Initiative for Globus in Europe) repository. |
| 3 | | Please configure IGE repositories. Example configuration for **SL5**: |
| 4 | | {{{#!sh |
| 5 | | cat > /etc/yum.repos.d/IGE.repo << EOF |
| 6 | | [IGE] |
| 7 | | name=IGE |
| 8 | | baseurl=http://repo-rpm.ige-project.eu/sl/sl5/x86_64/ |
| 9 | | enabled=1 |
| 10 | | gpgcheck=1 |
| 11 | | gpgkey=http://repo-rpm.ige-project.eu/RPM-GPG-KEY-IGE |
| 12 | | EOF |
| 13 | | }}} |
| 14 | | |
| 15 | | {{{#!sh |
| 16 | | cat > /etc/yum.repos.d/IGE-updates.repo << EOF |
| 17 | | [IGE-updates] |
| 18 | | name=IGE - Updates |
| 19 | | baseurl=http://repo-rpm.ige-project.eu/sl/updates/sl5/x86_64/ |
| 20 | | enabled=1 |
| 21 | | gpgcheck=1 |
| 22 | | gpgkey=http://repo-rpm.ige-project.eu/RPM-GPG-KEY-IGE |
| 23 | | EOF |
| 24 | | }}} |
| 25 | | |
| 26 | | '''IMPORTANT:''' If for any reason you do not want to use IGE repos, you can alternatively configure the system to use EPEL (Extra Packages for Enterprise Linux) repository. |
| 27 | | * The configuration can be done by installation of yum-conf-epel.noarch package using the YUM Package Manager. |
| 28 | | {{{ |
| 29 | | #!div style="font-size: 90%" |
| 30 | | {{{#!sh |
| 31 | | yum install yum-conf-epel.noarch |
| 32 | | }}} |
| 33 | | }}} |
| 34 | | |
| 35 | | * Install the gridFTP server package: |
| 36 | | {{{ |
| 37 | | #!div style="font-size: 90%" |
| 38 | | {{{#!sh |
| 39 | | yum install globus-gridftp-server-progs.x86_64 |
| 40 | | }}} |
| 41 | | }}} |
| 42 | | |
| 43 | | |
| 44 | | The grid-ftp server requires the X.509 certificate and key to be present in the following locations |
| 45 | | * ''/etc/grid-security/hostcert.pem'' |
| 46 | | * ''/etc/grid-security/hostkey.pem'' |
| 47 | | |
| 48 | | The GridFTP server has to be configured to know the range of opened ports for connections. |
| 49 | | Please edit the /etc/xinetd.d/gsiftp file and set the GLOBUS_TCP_PORT_RANGE environment variable. |
| 50 | | |
| 51 | | {{{#!sh |
| 52 | | service gsiftp |
| 53 | | { |
| 54 | | instances = 100 |
| 55 | | per_source = 50 |
| 56 | | socket_type = stream |
| 57 | | wait = no |
| 58 | | user = root |
| 59 | | env += GLOBUS_TCP_PORT_RANGE=20000,25000 |
| 60 | | server = /usr/sbin/globus-gridftp-server |
| 61 | | server_args = -i -l /var/log/globus-gridftp.log -disable-usage-stats -d ERROR,WARN |
| 62 | | log_on_success += DURATION |
| 63 | | nice = 10 |
| 64 | | disable = no |
| 65 | | } |
| 66 | | }}} |
| 67 | | |
| 68 | | If needed please install the xinetd tool first |
| 69 | | {{{#!sh |
| 70 | | yum install xinetd.x86_64 |
| 71 | | }}} |
| 72 | | |
| 73 | | IMPORTANT: Do not forget to reload xinetd service. |
| 74 | | |
| 75 | | {{{#!default |
| 76 | | /etc/init.d/xinetd reload |
| 77 | | }}} |
| 78 | | |
| 79 | | also check if its started on system boot by default: |
| 80 | | {{{ |
| 81 | | /sbin/chkconfig --list xinetd |
| 82 | | xinetd 0:off 1:off 2:off 3:on 4:on 5:on 6:off |
| 83 | | }}} |
| 84 | | |
| 85 | | We also recommend to adjust system wide TCP keepalive parameters for reliability reasons: |
| 86 | | {{{ |
| 87 | | echo "600" > /proc/sys/net/ipv4/tcp_keepalive_time |
| 88 | | echo "75" > /proc/sys/net/ipv4/tcp_keepalive_intvl |
| 89 | | echo "9" > /proc/sys/net/ipv4/tcp_keepalive_probes |
| 90 | | }}} |
| 91 | | In order to make the changes persistent add it also to the `/etc/sysctl.conf` |
| 92 | | * finally simply verify the installation by issuing the following command (if posible using external client host) |
| 93 | | {{{ |
| 94 | | telnet grass1.man.poznan.pl 2811 |
| 95 | | Trying 150.254.173.215... |
| 96 | | Connected to grass1.man.poznan.pl (150.254.173.215). |
| 97 | | Escape character is '^]'. |
| 98 | | 220 grass1.man.poznan.pl GridFTP Server 6.19 (gcc64, 1359994843-83) [Globus Toolkit 5.2.3] ready. |
| 99 | | }}} |
| | 1 | [http://apps.man.poznan.pl/trac/qcg/wiki/gridftp%20server|external link] |
