SSH tunnelling: Difference between revisions

Jump to navigation Jump to search

SSH tunnelling (view source)

Revision as of 19:00, 16 July 2018

29 bytes removed ,  6 years ago
no edit summary
No edit summary
No edit summary
Line 125: Line 125:
</source>
</source>


= Contacting a visualization, Jupyterhub, database or other server running on a compute node= <!--T:25-->
= Connecting to a program running on a compute node= <!--T:25-->


<!--T:26-->
<!--T:26-->
SSH tunnelling can also be used in the context of Compute Canada to allow a user's computer to connect to a compute node on a cluster through an encrypted tunnel that is routed via the login node of this cluster. This technique allows graphical output of applications like a [[Jupyter | Jupyter Notebook]] or [[Visualization|visualization software]] to be displayed transparently on the user's local workstation even while they are running on a cluster's compute node. When connecting to a database server where the connection is possible though the head node only, SSH tunneling can be used to move an arbitrary port number of a compute network to a cluster's head node and bind it to the database server.  
SSH tunnelling can also be used in the context of Compute Canada to allow a user's computer to connect to a compute node on a cluster through an encrypted tunnel that is routed via the login node of this cluster. This technique allows graphical output of applications like a [[Jupyter | Jupyter Notebook]] or [[Visualization|visualization software]] to be displayed transparently on the user's local workstation even while they are running on a cluster's compute node. When connecting to a database server where the connection is only possible through the head node, SSH tunnelling can be used to bind an external port to the database server.


== Example for a job == <!--T:27-->
== Example for a job == <!--T:27-->
Line 153: Line 153:
</pre>
</pre>


<!--T:31-->
There is NAT on both Graham and Cedar allowing users to access the internet from the compute nodes. On Graham however, access is blocked by default at the firewall. A user (or an analyst) would need to submit a request to have a specific port/IP open.


== From Linux or MacOS X == <!--T:32-->
There is NAT on both Graham and Cedar allowing users to access the internet from the compute nodes. On Graham however, access is blocked by default at the firewall. Contact [[Technical support|technical support]] if you need to have a specific port opened, supplying also the IP address or range of addresses which should be allowed to use that port.
<!--T:32-->
 
== From Linux or MacOS X ==
 


<!--T:33-->
On a Linux or MacOS X system, we recommend using the [https://sshuttle.readthedocs.io sshuttle] Python package.
On a Linux or MacOS X system, we recommend using the [https://sshuttle.readthedocs.io sshuttle] Python package.


Diane27
rsnt_translations
56,420

edits

Retrieved from "https://docs.alliancecan.ca/wiki/Special:MobileDiff/54986"

Navigation menu