Running a Storage Server as a Relay

A storage server can be configured to function as a secure relay point for Media Shuttle file transfers. Relays allow you to control the network path taken to route file transfers. Relays also provide for a simpler firewall configuration as they limit all file transfer traffic to a single port.

Up to four relays can be assigned to a single Media Shuttle Storage Server. Every portal assigned to the relaying storage server must use those relays. Relays assigned to a common storage server do not all have to use the same operating system.

Note: Using a storage server as a relay limits its maximum throughput to approximately 400-500 Mbps, regardless of your link’s capacity.

Network Traffic Flow

A typical deployment places a Media Shuttle Storage Server in the organization's DMZ. Signiant traffic that originates from that storage server is allowed to reach internal networks. One or more Media Shuttle Storage Servers are set up on an internal network to receive file transfers from the relaying storage server.

Deploying a Storage Server as a Relay

Setting up a storage server as a relay requires that you make relay mode available, that you identify the hostname or IP address of each relay in Media Shuttle, and that you configure relays.

To make relay mode available:

  1. In your terminal, open the dds configuration file.

    Linux: /usr/Signiant_Media_Shuttle/bin/agent/bin/dds.conf
    Windows: C:\Program Files\Signiant Media Shuttle\bin\agent\bin\dds.cfg

  2. Set relay mode to open.

  3. Save the file.

  4. Restart your Media Shuttle Storage Server.

    Linux: ./siginit restart
    Windows: Go to Start > Programs > Media Shuttle Services > Restart Services

To add relays to your Media Shuttle network configuration:

  1. Log into your Account Administration Console and click the Storage tab.
  2. Hover over the Storage Server and click More Options.
  3. From the menu, select Network Configuration.
  4. Select Relays and enter up to four comma-separated relays, identified by hostname or IP address.

Note: You can also enter relays for your object-based cloud storage, allowing you to direct outbound traffic from these storage locations through relays assigned to a Media Shuttle Storage Server.

Configuring a Relay

To configure your relay:

Using dds_admin

  1. In your terminal, from the bin directory, run dds_admin.
  2. Run addrelay <hostname of storage server hosting the portal> <IP address of storage server hosting the portal> port=49221

Using dds.cfg

  1. In your terminal, open the dds configuration file.

    Linux: /usr/Signiant_Media_Shuttle/bin/agent/bin/dds.conf
    Windows: C:\Program Files\Signiant Media Shuttle\bin\agent\bin\dds.cfg

  2. Enter Proxy for <hostname of storage server hosting the portal> is <IP address of storage server hosting the portal> port=49221

    Example: Proxy for portal-server is 54.197.81.101 port=49221

Note: You must also configure your firewall rules to ensure that traffic coming into the relay is routed to known internal storage servers.

Configuring Multiple Relays

If setting up multiple relays in a row, you must identify each relay hop individually. You can only specify the first relay hop in the Relays field on the Storage tab in your Account Administration Console. Additional relay hops must include a rule directing traffic to the next target.

For example:

  • Relay A has a rule that the relay for Storage Server A is Relay B
  • Relay B has a rule that the relay for Storage Server A is Relay C
  • Relay C has a rule that the relay for Storage Server A is the IP address of Storage Server A

Using Relays with Load-Balanced Groups

When connecting to a load-balanced group of Media Shuttle Storage Servers, the connection is made with the first successfully-responding relay.

Note: If a Media Shuttle Storage Server configured as a relay is offline, it remains in the load-balanced group.