A Reliable and Fast Data Transfer for Grid Systems Using a Dynamic Firewall Configuration

  • T. Oistrez
  • E. Grünter
  • M. Meier
  • R. Niederberger
Part of the Lecture Notes in Computer Science book series (LNCS, volume 5415)


Firewalls separate areas of different security requirements. This major task leads to problems regarding the network connectivity and performance of various applications. In particular within distributed systems, like a Grid an unobstructed communication, which is essential for using distributed resources is not possible. Furthermore Grid applications often use multiple ports dynamically and in parallel. This raises the challenge of a dynamic configuration of firewalls. This paper shows a solution based on UDP hole punching and describes the implementation of a UNICORE transfer service using this technology to perform direct high speed file transfers.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Richard Stevens, W.: TCP/IP Illustrated I. The Protocols. Addison Wesley, Reading (1994)MATHGoogle Scholar
  2. 2.
    GT4.0 GridFTP, Globus Toolkit website (August 2006), http://www.globus.org/toolkit/docs/4.0/data/gridftp
  3. 3.
    Cisco Security Appliance Command Line Configuration Guide - For the Cisco ASA 5500 Series and Cisco PIX 500 Series Software Version 7.2, http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/asacfg72.pdf
  4. 4.
    Son, S., Allcock, B., Livny, M.: CODO: Firewall Traversal by Cooperative On-Demand Opening. In: 14th IEEE Symposium on High Performance Distributed Computing (HPDC14), Research Triangle Park (July 2005), http://www.cs.wisc.edu/~sschang/papers/CODO-hpdc.pdf
  5. 5.
    Schmidt, J.: Der Lochtrick - Wie Skype & Co. Firewalls umgehen. In: CT 2006, Heft 17, p. 142. Heise Verlag (2006)Google Scholar
  6. 6.
    The GNU Netcat project (August 2006), http://netcat.sourceforge.net/
  7. 7.
    The netfilter.org project firewall, NAT, and packet mangling for linux (1999 - 2007), http://www.netfilter.org/
  8. 8.
    UNICORE Grid computing Technology UNiform Interface to COmputing REsources (August 2006), http://www.unicore.eu/
  9. 9.
    Gu, Y.: UDT: UDP-based data transfer library - Version 3 (May 2006), http://www.cs.uic.edu/~ygu1/
  10. 10.
    Gu, Y., Grossmann, R.L.: UDT: A transport protocol for data intesive applications Internet Draft, draft-gg-udt-01.txt University of Illinois at Chicago (August 2004)Google Scholar
  11. 11.
    Liang, S.: The Java Native Interface: Programmer’s Guide and Specification. Addison-Wesley, Longman, Amsterdam (1999)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2009

Authors and Affiliations

  • T. Oistrez
    • 1
  • E. Grünter
    • 1
  • M. Meier
    • 1
  • R. Niederberger
    • 1
  1. 1.Research Centre JuelichJuelichGermany

Personalised recommendations