Hi all,
we are setting up an iRODS zone in a private IP subnet. We would like to use port forwarding - DNAT from a public IP to the iCAT which has a private IP.
The problem is of course with resources, I have to create a resource which has a certain dns hostname. From the public internet, the hostname points to the public IP. This apparently creates a problem when initiating a transfer on that resource, the iCAT server tries to reach the public IP on port 1247, which essentialy creates a loop in the firewall.
I have tried to override the hostname using /etc/hosts and hosts_config.json on the iCAT server, however it seems that the client initiating the transfer receives the overriden (private) IP of the resource and not the public one.
Is there any official guide how to operate iRODS behind NAT?
Thank you.
Cheers,
Martin