Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: pdf layout

Anchor
TOC
TOC
Include Page
KBCOMMON:KB-CSSstyle
KBCOMMON:KB-CSSstyle

...

Table of Contents
excludeContents
stylesquare

Overview

(warning) The X11 feature is supported across a VPN, but not across a NAT connection.

The Charon-SSP Manager can set up an X11 login session using Xephyr and the XDMCP protocol.

...

If the X-server runs on a remote system, the remote system must have a working TCP/IP connection to the guest system running in the Charon-SSP instance.

Div
classpagebreak


The screenshot below shows an X-session from Charon-SSP Manager to a guest running Oracle Solaris 10.

...

The graphical performance depends on many parameters, for example, the performance of the host system, the emulated system, and the network.
One important requirement is that the round-trip time of the network connection between display device and emulated Solaris system running on the AWS instance should be less or equal to not be more than 20ms.
For every use case, a test is required to evaluate the suitability for the specific customer environment.

...

If it has not happened yet, Xephyr must be installed on the remote Linux system where the Charon-SSP Manager will be used to start the X-server.

Use the following commands command to install the software on a Linux system with RPM based packet management:

# yum install xorg-x11-server-Xephyr

Use the following commands to install the software on a Linux system with Debian package management:

# apt-get update
# apt-get install xserver-xephyr

Div
classpagebreak


Firewall Considerations

The Xephyr nested X-server listens for connections on port range 6001-6100 depending on the X11 Server configuration in Charon-SSP Manager. The configured ports must be allowed if a firewall (e.g. iptables on Linux) is used. For a quick assessment, in case the X-server does not show the dtlogin screen, the following commands on the Linux system running Xephyr can be used to turn off the firewall temporarily (depending on what firewall is being used).

...

  1. Allow access to XDMCP over the network:

    # svccfg -s cde-login setprop 'dtlogin/args=""'

  2. Restart CDE.

    # svcadm restart cde-login


Div
classpagebreak



Configuring and Starting the X11 Server in Charon-SSP Manager

Basic Configuration Steps and Start

...

An existing X-server definition can be modified by selecting it and then using the Edit button in the X11 overview window.

Div
classpagebreak


X11 Server Configuration Parameters

...

X11 server configuration parameters
ParameterDescription

Profile name

Name to identify a specific set of configuration parameters in the list of saved configurations.

IP address

IP address of the guest Solaris system. If you are using an SSH VPN tunnel to the AWS instance, enter the address the Solaris system has in the VPN network.

The X protocol is not encrypted. So it should not be run over a public network without proper protection by a VPN.

Keyboard

Select the required keyboard from the drop-down list. You can select from the layouts provided by the system on which the Charon-SSP manager runs.

From

If the system running the X-server has only one IP address, this parameter can be left at default. If there is more than one IP address configured on the X-Server host, select the address that is on the same subnet as the Solaris guest or at least reachable from Solaris. This parameter prevents older Solaris versions from choosing a random (potentially unreachable) address from multiple IP addresses available on the host running the X-Server.

Port

Values 6001 - 6100. The port number determines on which display the X-server is started. For example, port 6001 results in the X-server running on display “:1”.

Display

Read-only field. Shows the display number based on the port number selected.

Resolution

This parameter can be adapted to specific requirements of applications with respect to the X-server capabilities (“VISUALS”). One example would be the 256-bit indexed color visual, which requires a display depth of 8 bits. It also allows users to set the X display to full screen mode.

Stopping the X11 Server

To stop the X-server, follow the instructions below:

...

The mechanism described above is only valid for Linux operating systems on which the Charon-SSP Manager runs. On other systems, for example Microsoft Windows system, you can use alternative X-server applications. However, the steps are different from the ones used via the Charon-SSP Manager on Linux. As the first step, you must install an X-server. There are several commercial products. However, there are also free X-server packages, for example the X-server integrated in Cygwin, VcXsrv, or Xming. For example, the installer for Xming and more product information are available on http://www.straightrunning.com/XmingNotes/. Please also refer to the non-Cloud product documentation for additional information.

Div
classpagebreak


Include Page
KBCOMMON:DOC-GoToToc
KBCOMMON:DOC-GoToToc