RE: [Quickfix-developers] Restricting acceptor to specific IP address(es)
Brought to you by:
orenmnero
Menu
▾
▴
RE: [Quickfix-developers] Restricting acceptor to specific IP address(es)
|
From: Steve B. <sb...@sm...> - 2006-05-18 06:04:27
|
Hi Ajay,=20 I assume you aren't using QuickFIX/J but for those who are I think this can already be done, but not as elegantly as it could be. Each session has a "Responder" that encapsulates the network connection. The Responder has a method for accessing the remote IP address. You could use this information in the Application logon callback to validate the remote IP=20 address. This is more a workaround than a recommended solution.=20 The Responder interface is public (by necessity) but I consider=20 it more of an internal interface and one that I'll probably=20 refactor at some point. Steve > -----Original Message----- > From: qui...@li...=20 > [mailto:qui...@li...] On=20 > Behalf Of Caleb Epstein > Sent: Thursday, May 18, 2006 6:05 AM > To: Ajay Kamdar > Cc: Oren Miller; qui...@li... > Subject: Re: [Quickfix-developers] Restricting acceptor to=20 > specific IP address(es) >=20 > QuickFIX Documentation:=20 > http://www.quickfixengine.org/quickfix/doc/html/index.html > QuickFIX Support: http://www.quickfixengine.org/services.html >=20 > On 5/17/06, Ajay Kamdar <Aja...@tr...> wrote: > > In general do you agree that having the engine itself=20 > support IP address > > matching before establishing the FIX session is a much cleaner and > > elegant solution than to have to work around with a=20 > separate firewall? > > If we are in agreement in principle that this would be a=20 > good thing to > > add to QuickFIX, then I can work on submitting a patch suitable for > > wider consumption. Otherwise I can simply hack something up=20 > much more > > quickly that is specific for my environment. >=20 > I'm sure if you submitted a patch, it would be accepted. If its > useful to you, it is surely useful to others, just as long as it > doesn't change the current default behavior. >=20 > I submit that you'll probably want to support multiple addresses for > each session, specified as dotted quads (e.g. A.B.C.D) or in > address/mask format (e.g. A.B.C/24). >=20 > --=20 > Caleb Epstein > caleb dot epstein at gmail dot com >=20 >=20 > ------------------------------------------------------- > Using Tomcat but need to do more? Need to support web=20 > services, security? > Get stuff done quickly with pre-integrated technology to make=20 > your job easier > Download IBM WebSphere Application Server v.1.0.1 based on=20 > Apache Geronimo > http://sel.as-us.falkag.net/sel?cmd=3Dk&kid=120709&bid&3057&dat=121642 > _______________________________________________ > Quickfix-developers mailing list > Qui...@li... > https://lists.sourceforge.net/lists/listinfo/quickfix-developers >=20 |
