Attix5 Pro FAQ
Search:     Advanced search

How to configure non-secure communications on the StorageServer (no SSL)

Article ID: 35
Last updated: 05 Jan, 2011

SSL cannot be switched off on the Storage Platform but you can enable an additional port that does not use SSL. Only some Backup Client commands will use this additional port to connect to the StorageServer to stream data without the overhead of SSL security. This setting does not affect any inter-server communication between the AccountServer, StorageServer and MirrorServers.

To enable this feature on the StorageServer:

  1. Stop your StorageServer service and edit the relevant settings.xml file.
  2. Change the NonSecurePublicPort setting from 0 to an available port that you wish to host the non-secure server. Port 80 is recommended if you do not use a proxy, because most fire walls are configured to allow http.
    <NonSecurePublicPort default="0">80</NonSecurePublicPort>
    If you would like to host your non-secure port on a specific IP, you can configure it with the NonSecurePublicIp setting. If this setting is not configured, the non-secure port will be hosted on the same bindings as the PublicIp settings.
    <NonSecurePublicIp>10.0.0.10</NonSecurePublicIp>
  3. Start the StorageServer service. You should see the following line logged in the log:
    Info: Non-secure Listener started on 10.0.0.10:80
    The setting above will only host the non-secure server on 10.0.0.10:80, while your public SSL server can be set to bind on a public IP.

Note: Using a non-secure port for communications will cause user data and encryption keys to be passed in the clear between the Backup Client and Storage Platform.

Article ID: 35
Last updated: 05 Jan, 2011
Revision: 1
Views: 2758
Comments: 0
Posted: 23 Aug, 2010 by Smit F.
Updated: 05 Jan, 2011 by -- .
This article was:  
Prev   Next
Article 34 - How to set the socket timout on the Storage Platform.     Article 36 - SIS options per group