Configuration of the DSTM Server/TEP

The DSTM server/TEP is configured exactly as described above (when using RPCv6). The difference when using TSP only arises when starting the server, for which one needs to execute the following command:

#rpcdstmd –tspport 7000

For using SSL with TSP start rpcdstmd with the following additional options:

-key /etc/dstmd/cert.pem -ca /etc/dstmd/cacert.pem

If the files exist and should be used also specify the following options:

-pass /etc/dstmd/
-cert /etc/dstmd/accepted.pem

Configuration of the DSTM Client (with TSP)

Again the only difference to using DSTM with RPC is the command to start the daemon:

#dstmd -tspserver 2001:688:1f9b:1003:207:e9ff:fe11:bfb8 -port 7000

When also using SSL of course also the necessary certificate options need to be specified:

-key /etc/dstmd/cert.pem -ca /etc/dstmd/cacert.pem
-pass /etc/dstmd/pass                      (if /etc/dstmd/pass exists)
-cert /etc/dstmd/accepted.pem       (if /etc/dstmd/accepted.pem exists)

Testing Results and Issues

Installation was easy as an RPC patch was not needed and moreover DSTM is now a module so there was no need to recompile the kernel. The use of SSL greatly increases security but will also lead to a rather significant performance loss due to the added load of certificate verification when setting up new connections.

Please refer to the previous section of the configuration example on using DSTM with RPC on
FreeBSD systems for more implementation results.