ref: 5a3ef46a346505aca99931daf40d3b0d8ed7da9a
parent: a2c6ccf3cc22036f2635c6fd899e1fd214a79010
author: stanley lieber <stanley.lieber@gmail.com>
date: Fri Jan 18 17:03:38 EST 2019
fqa8.ms: add 8.4.8.2 - drawterm behind firewalls (thanks, tgz)
--- a/fqa.ms
+++ b/fqa.ms
@@ -1261,6 +1261,10 @@
8.4.8.1 - Connect to Plan 9 from a mobile device
.ihtml a
+.ihtml a <a href="fqa8.html#8.4.8.2">
+8.4.8.2 - drawterm behind firewalls
+.ihtml a
+
.ihtml a <a href="fqa8.html#8.5">
8.5 - Audio
.ihtml a
--- a/fqa8.ms
+++ b/fqa8.ms
@@ -1440,6 +1440,59 @@
.FG iosprompt2openbsdtmuxdrawterm9front png
+.html - <a name="8.4.8.2" />
+.ihtml h3 <h3>
+.SH
+8.4.8.2 - drawterm behind firewalls
+.R
+.ihtml h3
+
+.CW
+drawterm
+.R
+connects to the cpu service, which normally listens on TCP port 17019, after authenticating against the auth server, which normally listens on TCP port 567. Authentication against the auth server is bypassed when connecting as the auth server's hostowner.
+
+On the occassion you find yourself behind a firewall that blocks the auth/ticket TCP port 567, or the cpu TCP port 17019, you can configure your auth or cpu servers to listen on different ports.
+
+To configure the auth server to listen on TCP port 80, in addition to TCP port 567:
+.P1
+cd /bin/service.auth
+cp tcp567 tcp80
+.P2
+From your command line, or script, use Plan 9 dial strings:
+.P1
+drawterm -a tcp!<auth_server>!80 -h <cpu_server> -u <username>
+.P2
+example:
+.P1
+drawterm -a tcp!auth.9front.org!80 -h cpu.9front.org -u ken
+.P2
+To configure your cpu server to listen on a different port:
+.P1
+cd /rc/bin/service
+cp tcp17019 tcp23
+.P2
+From your command line:
+.P1
+drawterm -a tcp!auth.9front.org!80 -h tcp!cpu.9front.org!23 -u ken
+.P2
+This will attempt to connect to your auth server on TCP port 80 (HTTP) and to your cpu server on TCP port 23 (Telnet).
+
+Note: The same use of Plan 9 dial strings works for specifying auth servers on Plan 9 VMs behind firewalls. Use the dial string for auth in
+.CW /lib/ndb/local :
+.CW auth=tcp!<auth_server>!80
+
+Read:
+.ihtml a <a href="http://man.9front.org/8/listen">
+.CW listen(8) ,
+.ihtml a
+.ihtml a <a href="http://man.9front.org/6/authsrv">
+.CW authsrv(6) ,
+.ihtml a
+.ihtml a <a href="http://man.9front.org/2/dial">
+.CW dial(2)
+.ihtml a
+
.html - <a name="8.5" />
.ihtml h2 <h2>
.SH
@@ -1512,7 +1565,7 @@
.B Note:
Devices must be FAT or FAT32 formatted; exFAT is not supported.
-
+.bp
.html - <a name="8.7" />
.ihtml h2 <h2>
.SH
--- a/notes.ms
+++ b/notes.ms
@@ -1,7 +1,8 @@
-.bp
-.ce
-.ps 23
-.B NOTES
+.\" This troff source is processed to create all forms of the
+.\" 9FRONT DASH 1 book and the http://fqa.9front.org website.
+.\" NOTE: Purely experimental. Methods employed may change.
+.\" troff -ms -mpictures notes.ms | page
+.ds CH \" turn off page numbering
.bp
.ce
.ps 23