Project

General

Profile

Conventions and Tools » History » Version 46

Leon Mualem, 05/27/2019 06:50 PM
simplify and prune references to obsolete docs in docdb.

1 1 Peter Shanahan
h1. Conventions and Tools
2 1 Peter Shanahan
3 1 Peter Shanahan
h2. Overview
4 1 Peter Shanahan
5 1 Peter Shanahan
The user interface environment to the DAQ system is hosted in VNC servers running on DAQ cluster computers at various sites.  Users interact with these via VNC viewers hosted on control room desktops, and for experts, on their own desktop or laptop.  
6 1 Peter Shanahan
7 46 Leon Mualem
The NovaControlRoom package contains icons and scripts to automatically set up the needed ssh tunnels, and launch the VNC viewers. 
8 9 Peter Shanahan
9 1 Peter Shanahan
10 10 Peter Shanahan
h3. VNC Viewers
11 10 Peter Shanahan
12 10 Peter Shanahan
13 46 Leon Mualem
The command to start a viewer is in the script launched by the desktop icons, but the underlying command is of the form
14 10 Peter Shanahan
<pre> vncviewer -Fullscreen -Shared -passwd ~/.vnc/passwd :<NN> </pre>
15 10 Peter Shanahan
where
16 10 Peter Shanahan
<pre> -Fullscreen # starts in full screen mode
17 30 Matthew Strait
 -Shared # keeps other users from getting disconnected from the server when you connect
18 10 Peter Shanahan
 NN # two-digit port number (relative to 5900) </pre>
19 9 Peter Shanahan
20 13 Peter Shanahan
h2. Conventions
21 1 Peter Shanahan
22 4 Peter Shanahan
h3. VNC Servers
23 4 Peter Shanahan
24 26 Keith Matera
In the current model (as of 2016-05-10), we employ 2 VNC servers for each detector.  In order to allow for different desktop environments on a single host machine, each VNC server on is run under a different account, using a dedicated port.  We tend to use certain servers for particular functions, but this is subject to change.
25 1 Peter Shanahan
26 27 Keith Matera
The table below gives the VNC server host name used for each system:
27 1 Peter Shanahan
28 27 Keith Matera
| *Abbreviation* | *Host* | *Used in standard ROC?* |
29 27 Keith Matera
| NDOS | novadaq-ctrl-master | No |
30 27 Keith Matera
| NDSBTest | novadaq-ctrl-master | No |
31 27 Keith Matera
| FarDet | novadaq-far-master-02 | Yes |
32 44 Teresa Lackey
| FarDet | novadaq-far-gateway-01 | Yes |
33 27 Keith Matera
| NearDet | novadaq-near-master | Yes |
34 27 Keith Matera
| NearGateway | novadaq-near-gateway-01 | Yes |
35 27 Keith Matera
36 27 Keith Matera
(See [[novadaq_apdtest:]] for more information on NDSBTest)
37 27 Keith Matera
38 27 Keith Matera
The next table gives machine, account, and port information for each of the six stations used at a Remote Operation Center (ROC):
39 27 Keith Matera
40 31 Matthew Strait
| *Station* |*Functions* | *Host* | *Account* | *Gateway* | *Remote Port* | *Gateway Port* | *Local Port* |
41 1 Peter Shanahan
| 1 | FD Run Control
42 45 Teresa Lackey
    Message Logger | novadaq-far-master-02 | novacr01 | novadaq-far-gateway-01 | 5951 | 5900 | 5981 |
43 1 Peter Shanahan
| 2 | FD Event Display
44 1 Peter Shanahan
  Online Monitoring
45 45 Teresa Lackey
  APD Cooling GUI  | novadaq-far-master-02 | novacr02 | novadaq-far-gateway-01 | 5952 | 5901 | 5982 |
46 45 Teresa Lackey
| 3 | Synoptics | nova-cr-03 | novacr03 | novadaq-near-gateway-01 | 5953 | 5900 | 5973 |
47 26 Keith Matera
| 4 | Camera pages
48 43 Teresa Lackey
   beam pages | webpage | ---------- | ----------------------------- | ------ | ------ | ------ |
49 1 Peter Shanahan
| 5 | ND Run Control
50 45 Teresa Lackey
    Message Logger| novadaq-near-master | novacr01 | novadaq-near-gateway-01 | 5951 | 5901 | 5991 |
51 1 Peter Shanahan
| 6 | ND Event Display
52 31 Matthew Strait
  Online Monitoring
53 45 Teresa Lackey
  APD Cooling GUI | novadaq-near-master | novacr02 | novadaq-near-gateway-01 | 5952 | 5902 | 5992 |
54 43 Teresa Lackey
| -- | FD Expert Desktop | novadaq-far-master | novacr03 | novadaq-far-gateway-01 | 5953 | 5902 | 5983 |
55 45 Teresa Lackey
| -- | ND Expert Desktop | novadaq-near-master | novacr03 | novadaq-near-gateway-01 | 5953 | 5903| 5993 |
56 27 Keith Matera
57 31 Matthew Strait
The *gateway* and *gateway port* are what you need to know to set up your own SSH tunnels so that you can view the sessions from your local machine.  The *local port* is a recommendation for what port to use on your local machine.
58 31 Matthew Strait
59 27 Keith Matera
The servers for each of these is set up to occupy a 1x2 monitor grid, with total pixel count 2650x2880. 
60 27 Keith Matera
61 27 Keith Matera
Two VNC servers run on the nova-daq-04 Control Room desktop in the Fermilab 1st floor control room, hosting webcam displays. From off-site, webcam and beam pages can be found on the "What to do on Shift links":http://nusoft.fnal.gov/nova/shift/links/ site.
62 25 Keith Matera
63 31 Matthew Strait
VNC has a port base of 5900.  However, in addition to the VNC connection itself, it also uses a port for the X11 connection 100 higher than the VNC port.  Since general X11 connections use ports starting at 6010, and assuming less than 40 open connections is a safe bet, a good assumption for VNC port ranges that avoid conflicts with X11 would be 5900-5909 and 5950-5999.
64 25 Keith Matera
65 25 Keith Matera
h3. ssh Tunnels
66 25 Keith Matera
67 25 Keith Matera
ssh tunnels are required to access the port for a VNC server on a remote host (e.g., novacr01@novadaq-ctrl-master.fnal.gov for station 1 on NDOS) from a localhost (e.g., your laptop, or a control room desktop).  Once launched, the tunnel can remain active indefinitely.  The ssh command has the form
68 25 Keith Matera
<pre>ssh -L <local_port>:localhost:<remote_port> -N -f -l <remote account> <remote host> </pre> 
69 25 Keith Matera
The ssh tunnel is authenticated using a kerberos ticket on the localhost, usually for a special use (i.e., non-personal) principle.  That principle must be in the k5login file for the remote account, and the remote host must be directly reachable from the localhost (i.e., the localhost must be in the fnal.gov domain.)
70 25 Keith Matera
71 19 Eric Flumerfelt
*EXPERTS ONLY*
72 19 Eric Flumerfelt
On Windows, using RealVNC Viewer (renamed to vncviewer.exe), MIT Kerberos for Windows, and plink; the following batch file (FarDet1.bat) connects to the first screen of the Far Detector:
73 19 Eric Flumerfelt
Start plink -ssh -L 5981:localhost:5981 <Principal>@<Gateway> "ssh -L 5981:localhost:5951 -N novacr01@novadaq-far-master-02.fnal.gov"
74 1 Peter Shanahan
pause
75 1 Peter Shanahan
start vncviewer -Shared -passwd passwd localhost:81
76 1 Peter Shanahan
77 1 Peter Shanahan
passwd is a file with the MD5'd VNC viewer password, and <Gateway> is a machine connected to the Fermilab network accessible from the outside. Using the tables above, it is possible to connect to any detector/station combination.