Somerdata AROW Series, Additional Instructions For Installation And Operation

Page: 21 / 82

AROW Series
Data Diode
Installation and Operation 5-3
High Side
The data received over fibre optics on the high side is sent over the TCP
socket connection made by the high side host.
for example (assuming high side data port ip address is 10.0.1.12):
high side host:~$ nc -vn 10.0.1.129876 > received_data.dump
Comparing the md5sum of set and received files can confirm sent and
received are the same.
or for streaming data:
high side host:~$ nc -vn 10.0.1.129876 | pv > /dev/null
or for streaming checkable data:
high side host:~$ nc -vn 10.0.1.129876 | STMChecker -p dword
-f eti
or for webcam streaming:
high side host:~$ nc -vn 10.0.1.12 9876 | mplayer -
or
high side host:~$ nc -vn 10.0.1.12 9876 | avplay -
UDP over SOCAT
Multiple parallel UDP streams of data can be sent through AROW using
socat to create virtual network interface ports using tcp socket
connections to AROW as the "wire"
Socat is a Linux open source application that includes tunnelling a
network interface over a TCP socket connection.
Socat can be found here: http://www.dest-unreach.org/socat
Assuming the low side gateway (L-GW) host has a connection to the
10.0.0.0/24 network, create the low side of the tunnel (L-TUN):
# socat -d -d TCP:10.0.0.9:9876 TUN:192.168.254.1/24,up
Assuming the high side gateway (H-GW) host has a connection to the
10.0.1.0/24 network, create the high side of the tunnel (H-TUN):
# socat -d -d TCP:10.0.1.12:9876 TUN:192.168.254.2/24,up
H-GW
10.0.1.20
L-GW
10.0.0.20
AROW
L-TUN H-TUN
10.0.0.9 10.0.1.12
L1
L2
Ln
H1
H2
Hn
10.0.1.0/24
10.0.0.0/24