Skip to end of metadata
Go to start of metadata

Communications

Available Communication Methods in MassTransit

FTP

Configuring FTP Incoming Calls
    Configuring an FTP Server Listen

Configuring FTP Outgoing Calls
    Configuring an FTP Server Contact
    Configuring an FTP Client Listen

SFTP

Configuring SFTP Incoming Calls
    Configuring an SFTP Server Listen

SFTP Authentication
    SFTP Server Authentication
    SFTP Client Authentication

TCP/IP

Configuring TCP/IP Incoming Calls
    Configuring a TCP/IP Listen

Configuring TCP/IP Outgoing Calls
    Configuring a TCP/IP Server Contact

Increasing Throughput on High Latency Networks Using CTCP and ECN

TCP/IP Secure

Configuring TCP/IP Secure Incoming Calls
    Configuring a TCP/IP Secure Listen

Configuring TCP/IP Secure Outgoing Calls
    Configuring a TCP/IP Secure Server Contact
    Configuring an SSL Certificate
    Configure Trusted Root Certificate Authorities

UDT

Configuring UDT Incoming Calls
    Configuring an UDT Listen

Configuring UDT Outgoing Calls
    Configuring an UDT Server Contact

Forward Via

Configure Forward Via Outgoing Calls
    Configure a Forward Via Server Contact

Hot Folder

Configuring Hot Folder Incoming Calls
    Configuring a Hot Folder Listen

Configuring Hot Folder Outgoing Calls
    Configuring a Hot Folder Server Contact

Additional Configurations

Identify Your Server

Receiving a Call from an Unknown Server

Delay Automatic Calls

Simultaneous Calls Restrictions

Bandwidth Throttling

Configure MassTransit to Resist FTP/SFTP Attacks

Securing Web Services (SOAP) Communications with a Firewall

Configure Listen Reposting in Case of Listen Failure

Connecting to Other Servers

Tuning MassTransit

MassTransit Protocol Tuning Settings

TCP/IP Tuning Settings

UDP Tuning Settings



Available Communication Methods in MassTransit


MassTransit offers a variety of communication methods for connecting to its contacts so that you can select the most suitable one for your specific network and needs. On this page, you can find detailed information and configuration instructions about each available method.

Communication methods available in MassTransit SFTP:

Communication methods available in MassTransit HP:



Go to top

FTP


File Transfer Protocol (FTP) is a standard network protocol used to copy a file from one host to another over a TCP/IP-based network. FTP is built on a client-server architecture and utilizes separate control and data connections between the client and server applications which solves the problem of different end host configurations (i.e. Operating System, file names). The separate FTP connections are utilized on two ports:

  • "data" port – used for transmitting data;
  • "command" port (also known as "control" port) – used for transmitting commands between the FTP server and client which control the data transfers.

FTP can work in two modes: active and passive mode. Depending on the mode set, the data and the commands are transmitted on different port numbers.

In active FTP mode, the client connects to the FTP server's command port (default command port is "21"). After that, the client starts listening on a random port and tells it to the FTP server by sending a command. The server will then connect back to the client from its local data port (default data port is "20").

The FTP client doesn't make the actual connection to the server's data port – it only tells the server what port it is listening on and the server connects back to the specified port. If there is a firewall on the client side, this would appear as an incoming connection and it could be blocked.

In passive FTP mode, the client initiates both connections to the server, which solves the problem of firewalls filtering the incoming data port connection on the client. When an FTP connection is opening, the client opens two random ports locally. Using the first port, the client contacts the server on port 21, but instead of sending a PORT command and allowing the server to connect back to its data port, the client will send the PASV command. As a result, the server opens a random unprivileged port (P > 1023) and sends the PORT P command back to the client. Then, the client initiates the connection to port "P" on the server to transfer data.

In MassTransit, you can use both active and passive mode connections. For the passive ones, you can configure a port range that MassTransit will use to find the random port number which will be sent to the client. If MassTransit is behind a firewall or Network Address Translation (NAT), this port range as well as a public IP Address can be specified for the public connections.


Go to top


Configuring FTP Incoming Calls

 


You can configure your MassTransit HP or SFTP server to receive FTP incoming calls. This section provides you with detailed instructions about how to do that.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and a connection is made on FTP client connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. You must restart the MassTransit service for changes to apply.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring an FTP Server Listen

 

 

NOTE:

MassTransit allows you to configure multiple FTP Server listens.

To receive an incoming FTP call, you first need a FTP Server Listen:

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the FTP Server option.

    4. The Configure FTP Server window appears. Select the IP address you want MassTransit to listen on from the IP Address drop-down menu. Selecting All means that MassTransit will be listening for incoming calls on all network interfaces. That is the default option. If you select a particular IP address, MassTransit will use only that address to listen on.

        

    5. Enter the FTP Command and Data ports that will be used in the Port fields, or leave the default settings.

    6. In the FTP Welcome Message field, enter a welcome message that will be displayed to the contacts when they connect to the server.

    7. In the PASV Public IP field under the "Passive Mode Settings" area, enter the IP address you want to use as a public one for the FTP clients connected in passive FTP mode. If you leave this field blank, MassTransit will use the local IP address.

    8. Enter the lowest and the highest port numbers you want to use in the first and the second PASV Port Range fields respectively. This would be the port range MassTransit will use to establish connection between the FTP server and client. If you leave these fields blank, MassTransit will use a randomly assigned port.

    9. Click on the OK button to save the changed settings. The configured FTP method should appear as active in the Setup window.

   10. Click on the OK button in the Setup window.

You should be able to receive incoming FTP calls now.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.


Go to top


Configuring FTP Outgoing Calls

 

 

NOTE:

You can configure outgoing FTP calls on MassTransit HP only.

Since FTP is a client-server protocol, only the FTP client side can initiate the connection. That is why you should configure your MassTransit server to act as an FTP client. For this purpose, you need to add an FTP Server contact. See the Configuring an FTP Server Contact section below for detailed instructions about setting an FTP Server contact.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and a connection is made on FTP client connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. Restart the MassTransit service to apply changes.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring an FTP Server Contact

 

 

NOTE:

This configuration is per contact. You need to set the FTP communication method for each contact that you want to use it.

Follow these steps for setting an FTP Server contact:

    1. In the MassTransit Administrator, open the Contacts window.

    2. In the Contacts window, click on the Add... button to add a new contact, or highlight an existing FTP Server contact and click Edit... to edit it.

    3. Enter/change the desired information:
         a. if you are creating a new Server contact, see detailed information about how to do that on the Contacts page and then continue with the steps below.
         b. if you are editing an existing Server contact, continue with steps below.

    4. In the Outgoing Calls tab of the Setup window, select the FTP Client option from the Communication method drop-down menu.

        

    5. The FTP Client Configuration window appears:
         a. on MassTransit HP 7.0.0, the window that appears is as follows:

           

         b. on MassTransit HP 7.0.1, the window that appears is as follows:

           

    6. In the "FTP Server" area of the window, enter the information about the server you want to call and the login credentials of the FTP Client (which would be your server):
         a. IP Address field – enter the IP address of the FTP Server here.
         b. Port – here, you should enter the port number which your server will contact the remote FTP server on. The default port is "21".
         c. User ID – enter the username your server will use to authenticate on the FTP Server. If you leave the default setting ("anonymous"), the FTP Client will be able to connect to the remote server only if it is configured to accept calls from anonymous servers.

INFO:

For more information about anonymous FTP/SFTP access, see Generic Clients Contact.

         d. Password – enter the password for the username you chose above to connect the FTP server.

    7. In the "Directories" area, specify the names of the mailbox folders:
         a. Pick Up field – specifies the name of your "Pick Up" mailbox folder on the FTP server. The default setting is: /Pick Up
         b. Drop Off field – specifies the name of your "Drop Off" mailbox folder on the FTP Server. The default setting is: /Drop Off.

NOTE:

The above directories must be reachable when you are logged onto the remote FTP Server using the given user ID and password.

    8. Under the "Connection Options" area:
         a. the Use Passive Mode When Transferring Files checkbox is checked. It specifies that MassTransit will use the passive mode of FTP to transmit the files. If you want to use active FTP mode, uncheck the checkbox.
         b. if you are running MassTransit HP version 7.0.1, there will be three more "Connection Options":
            i. Limit Number Of Files Sent Per Transfer – checking this check box will enable the field next to it where you can specify a limit for the number of sent files per transfer; by default, the file transfers are not limited;
            ii. Limit Number Of Files Received Per Transfer – checking this check box will enable the field next to it where you can specify a limit for the number of received files per transfer; by default, the file transfers are not limited;
           iii. Limit Number Of Errors Per Transfer – checking this check box will enable the field next to it where you can specify a limit for the number of admissible errors per transfer; when this limit is reached, the connection will be interrupted; by default, the number of errors is not limited.

    9. Under the "After Receiving Files" area, you can find the following radio buttons:
         a. Delete Files From Server – selecting this option will delete the files from your contact's mailbox on the remote FTP Server after downloading them.
         b. Move Files To – if you select this option, you can specify a folder in your mailbox on the remote FTP Server where the downloaded files will be moved into.
         c. Leave Files on Server – if you select this option, the files will remain in your "Pick Up" mailbox folder on the remote FTP Server even after downloading them.

   10. When you are ready with the FTP Client configuration, click on the OK button to save the settings. If you click "Cancel", the changed settings will not be saved.

The configuration of the FTP Client user is complete. You should be able to place a call to the remote FTP server.

INFO:

For information about how to place a call, see Connecting to Other Servers section on the Contacts page.



Go to top


Configuring an FTP Client Listen

 

 

NOTE:

MassTransit allows you to configure multiple FTP Client listens.

MassTransit gives you the ability to configure automatic calls to all your FTP Server contacts. For this purpose, you need to configure an FTP Client listen which will poll for files that are ready for pick up on the FTP Server contacts.

For configuring an FTP Client listen, follow the steps bellow.

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button or highlight an existing FTP Client listen and click Configure... to edit it.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the FTP Client option.

    4. The Configure FTP Server Polling window appears.

        

         a. In the "Poll Time" area of the window, you can configure how often should your server connect to the FTP Server contacts and check if there are any files in the "Pick Up" folder for you.
         b. In the "Delay Before Downloading Files" area, you can set a delay period before downloading files. This delay allows detection of incomplete files on the FTP Server. The files will not be downloaded until they are complete.
         c. In the "Logging" area, check the Generate transcript of FTP server commands and responses checkbox if you want to save a log of the communication between your server and the FTP Server contact. The log file will be saved in the FTP Client's MassTransit installation directory:
            i. MassTransit SFTP 7.0 and later:
               - on 32-bit machines: C:\Program Files\Group Logic\MassTransit SFTP\Logs
               - on 64-bit machines: C:\Program Files (x86)\Group Logic\MassTransit SFTP\Logs
            ii. MassTransit HP 7.0:
               - on 32-bit machines: C:\Program Files\Group Logic\MassTransit Server 7\Logs
               - on 64-bit machines: C:\Program Files (x86)\Group Logic\MassTransit Server 7\Logs
            iii. MassTransit HP 7.1 and later:
               - on 32-bit machines: C:\Program Files\Group Logic\MassTransit Server\Logs
               - on 64-bit machines: C:\Program Files (x86)\Group Logic\MassTransit Server\Logs

    5. When you are ready with the FTP server polling configuration, click on the OK button to save the settings.

    6. In the "Add Incoming Call" window, make sure the FTP Client option is selected in the "Method" drop-down menu and the Periodically Check for Files checkbox is checked. If the checkbox is not checked, MassTransit will not check automatically for files on the FTP Server and you will need to do that manually.

        

    7. The newly created "FTP Client" listen should appear in the "Incoming Calls" tab of the Setup window.

    8. Click on the OK button in the Setup window to complete the configuration of the FTP Client listen.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.


Go to top


SFTP

 


SSH File Transfer Protocol (SFTP) is a network protocol that provides file access, file transfer, and file management functionality over any reliable data stream. This protocol assumes that it is run over a secure channel, such as SSH, that the server has already authenticated the client, and that the identity of the client user is available to the protocol. SFTP's capabilities include resuming interrupted transfers, directory listings, and remote file removal.

SFTP is a much more secure communication method than FTP because of its encryption methods. In addition, you can resume interrupted transfers using SFTP unlike with FTP. On the other hand, the SFTP encryption mechanisms slow down the file transfers significantly.


Go to top


Configuring SFTP Incoming Calls

 


You can configure your MassTransit HP or SFTP server to receive SFTP incoming calls. For this purpose, you need to configure an SFTP Server listen.

NOTE:

If your server is using multiple IP addresses, it is possible that you receive a Transporter Service Initialization Failed message in your MassTransit Administrator log. If you don't want to use SFTP, you can just ignore this message, otherwise please follow these steps.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring an SFTP Server Listen

 

 

NOTE:

MassTransit allows you to configure multiple SFTP Server listens. For SFTP to listen in MassTranist the MassTransit Transporter service must be running.

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the SFTP Server option.

    4. The Configure SFTP Server window appears. Select the IP address you want MassTransit to listen on from the IP Address drop-down menu. Selecting All means that MassTransit will be listening for incoming calls on all network interfaces. That is the default option. If you select a particular IP address, MassTransit will use only that address to listen on.

        

    5. Enter the port that will be used for the SFTP connection in the SFTP Port field, or leave the default setting.

    6. In the SFTP Welcome Banner field, enter a welcome message that will be displayed to the contacts when they connect to the server.

    7. Click on the OK button in the "Configure SFTP Server" window to save the changed settings. The configured SFTP method should appear as active in the Setup window.

    8. Click on the OK button in the Setup window.

You should be able to receive incoming SFTP calls now.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.

NOTE:

Since SFTP is a client-server protocol, only the SFTP client side can initiate the connection. MassTransit does not provide an SFTP client feature and that is why you cannot initiate a call to another SFTP server.



Go to top


SFTP Authentication

 


In order to establish an SFTP connection, the SFTP server and client need to be authenticated. Find detailed information about configuring the SFTP authentication on the server and on the client side below.

SFTP Server Authentication

 


SFTP servers have a public/private key that is used by the client for authentication. Specifically, a private key is needed on the server (either auto generated by MassTransit or supplied by the administrator). The public key is then either distributed to the client separately, or it is saved to the client’s "known_hosts" configuration table of known public keys the first time a connection is made. This is then used in subsequent connections by the client to authenticate that the server is who it says it is.

This is different than SSL authentication in MassTransit, where the server’s public key is certified through a signed certificate by a known certificate authority. SFTP/SSH relies on the either pre-distribution of server public keys, or the trust that the first connection to a server is "really the true server" to get the public key stored.

If the server’s private/public key changes, then any client that previously connected will error out that the server’s key is invalid. Many SFTP clients (i.e., the Mac OS X client) will fail to connect at this point because it views that it is highly likely having a man-in-the-middle attack. The only way to get the connection to work in this case is to remove the server’s public key from the "known_hosts" file, and reestablish connectivity. On Mac OS X, the known_host file is in the following location and can be edited using a text editor:
    ~/.ssh/known_hosts

The MassTransit Administrator has an interface in the Security tab of the Setup window to specify the server’s public/private key – see the steps below. This can be done by auto-generating the private key, or allowing the user to pick a private key / passphrase which will then be saved in your preferences in the same way as you save SSL private keys. There is also a button that allows you to save the public key to a disk for sending to clients that want to connect.

NOTE:

If the server admin doesn’t send the public key, the client should be able to just retrieve it on the first connection.

    1. Open the Setup window of the MassTransit Administrator by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. Open the Security tab of the Setup window.

    3. In the SFTP/SSH Server Key section, you can choose whether to use an automatically generated by MassTransit server key or a supplied server key. The default option is the MassTransit server key.

        

         a. If you choose to have MassTransit generate the SSH server key, make sure the Automatically generate SFTP/SSH server key radio button is selected and click Cancel in the Setup window. The SFTP authentication configuration of your server is done and you do not need to perform the steps below.
         b. If you want to use a supplied server key, continue with the steps below.

    4. In the SFTP/SSH Server Key section, select the Use private key radio button. A window should appear where you can browse for the private key of the SFTP server. If not, click on the Choose... button.

    5. In the window, select the private key for the SFTP server and click Open.

    6. In the Password window that appears, enter the password for the private key and click OK in order to load the file in MassTransit.

        

    7. In the SFTP/SSH Server Key section, enter the private key password in the Enter password for private key field in order to enable MassTransit to use the file without being prompted for a password.

    8. Click OK in the Setup window to save the changes. Otherwise, click Cancel.

Save the public key to a disk space
When you have configured the server key for the SFTP authentication, you can save the server's public key in a file on a location you choose:
    1. Open the Security tab of the Setup window.

    2. In the SFTP/SSH Server Key section, click on the Save public key... button.

    3. In the appeared window, select a location for the public key file and click on the Save button. The public key file should appear in the selected directory.


Go to top


SFTP Client Authentication

 


Client authentication with SFTP in MassTransit is available in two ways – username/password and public key authentication.

Username/Password authentication
The first method is username/password authentication. For username / password, the client either specifies the username/password when configuring the connection or is prompted at login. This authenticates against the MassTransit server in the same way as FTP.

Public key authentication
The second method is public key authentication. In public key authentication, the client has a private key that only it knows about. The client pre-distributes its public key to servers that it wants to connect to. The server administrator can load that public key into the contacts information. This is available on a per contact basis. In the SSH/SFTP authentication process, the client passes its public key and also signs it with its private key. The server can then decrypt the signed public key with the public key it received to verify that the client has the real private key. Then the server matches the public key it received against its "known client public key" to determine if the user is valid.

In MassTransit 7, you can now specify the public key for each user that needs public key SFTP authentication. This is done within the contact editing process where the public key can be selected and loaded into the database for an individual contact:

    1. Open the Contacts window of the MassTransit Administrator by clicking on the Contacts button from the Navigation Bar or by selecting the Contacts option from the Window main menu.

    2. Highlight a contact that uses the SFTP connection method to contact the server and click on the Edit... button.

    3. Open the Security tab of the Contact Information window that appears.

    4. In the SFTP/FTP Privileges section, make sure the No SFTP/FTP Access radio button is NOT selected.

        

    5. Check the Use SFTP Public Key Authentication check box. A window should appear where you can select the client's public key, otherwise, click on the Select Public Key... button.

    6. In the window, locate and select the client's public key file. Then, click Open.

    7. The client's public key should be loaded in MassTransit. Click OK in the Contact Information window to save the changes.

Now, the configured contact should be authenticated automatically on the server without being prompted for login credentials.


Go to top


TCP/IP

 


TCP/IP is the standard communication protocol used for the Internet connections. It is a more secure and reliable protocol than FTP. TCP/IP has rules for error correction and even if the connection is interrupted before completing a file transfer, you can continue the file transmitting after the connection is reestablished.

Using the TCP/IP communication method in MassTransit, you can quickly transfer large numbers of files. TCP/IP is very suitable for transmitting small or not too large files in local area networks (LAN) and metropolitan area networks (MAN).

NOTE:

TCP/IP communication method is available in MassTransit HP only.



Go to top


Configuring TCP/IP Incoming Calls

 


To receive an incoming TCP/IP call on your MassTransit HP Server, you need to configure a TCP/IP Listen.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and there are files for sending or receiving on TCP/IP connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. You must restart the MassTransit service for changes to apply.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring a TCP/IP Listen

 

 

NOTE:

MassTransit allows you to configure multiple TCP/IP listens.

To receive an incoming TCP/IP call, you first need a TCP/IP Listen:

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the TCP/IP option.

    4. The Configure TCP/IP for Incoming Calls window appears. Select the IP address you want MassTransit to listen on from the IP Address to listen on for incoming calls drop-down menu. Selecting All means that MassTransit will be listening for incoming calls on all network interfaces. That is the default option. If you select a particular IP address, MassTransit will use only that address to listen on.

        

    5. Enter the port number that will be used for the TCP/IP connection in the Port field, or leave the default setting.

NOTE:

If you or the calling party have/has a firewall, it must be set to allow traffic on this port.

    6. Click on the OK button to save the changed settings. The configured TCP/IP method should appear as active in the Setup window.

    7. Click on the OK button in the Setup window.

You should be able to receive incoming TCP/IP calls now.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.


Go to top


Configuring TCP/IP Outgoing Calls

 


In order to be able to place an outgoing TCP/IP call to a contact, you need to configure that contact to use the TCP/IP communication method.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and there are files for sending or receiving on TCP/IP connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. You must restart the MassTransit service for changes to apply.

INFO:

MassTransit 7.2 and later will no longer connect on the TCP/IP protocol to versions of MassTransit earlier than MassTransit 4.5.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring a TCP/IP Server Contact

 

 

NOTE:

This configuration is per contact. You need to set the TCP/IP communication method for each contact that you want to use TCP/IP.

Follow these steps for setting a TCP/IP Server contact:

    1. In the MassTransit Administrator, open the Contacts window.

    2. In the Contacts window, click on the Add... button to add a new contact, or highlight an existing Server contact and click Edit... to edit it.

    3. Enter/change the desired information:
         a. if you are creating a new Server contact, see detailed information about how to do that on the Contacts page and then continue with the steps below.
         b. if you are editing an existing Server contact, continue with steps below.

    4. In the Outgoing Calls tab of the Setup window, select the TCP/IP option from the Communication method drop-down menu.

        

    5. The Configure TCP/IP for Calls window appears.

        

    6. In the upper field of the window, type the hostname or the IP address of the Server contact.

    7. In the second field, enter the port number that the other server is listening on.

NOTE:

If you or the party you are calling have/has a firewall, it must be set to allow traffic on the specified port.

    8. Click OK when the required information is entered. If you click Cancel the changes will not be saved.

    9. Click on the OK button in the "Contact Information" window to save the changes. If you click Cancel, the changes will be canceled.

The configuration of the TCP/IP Server contact is complete. You should be able to place a call to the remote TCP/IP server.

INFO:

For information about how to place a call, see Connecting to Other Servers section on the Contacts page.



Go to top


Increasing Throughput on High Latency Networks Using CTCP and ECN


To better utilize TCP communication over long distances, Microsoft has developed a new implementation of the TCP/IP protocol stack, known as the Next Generation TCP/IP stack. Many applications require fast data transfer over high speed and long distance networks. These particular types of networks have large "bandwidth delay product" , or BDP, which means that they can have substantial amounts of unacknowledged data in the network. In many of today’s networks, the BDP has increased beyond what was imagined when the TCP protocol was designed. In order to allow for this increase in BDP, several extensions to TCP have been created and most modern TCP/IP stacks implement these features. However, these features are not always enabled by default and need to be explicitly turned on by system administrators.

Compound TCP (CTCP) in the Next Generation TCP/IP stack aggressively increases the amount of data sent at a time by monitoring the bandwidth-delay product, delay variations, and packet losses. CTCP also ensures that its behavior does not negatively impact other TCP connections. This protocol is available in Windows Server 2008 and Windows Vista, however, there are hot fixes that can be applied to Windows XP 64-bit and Windows 2003. For more information about hotfixes, please refer to the http://support.microsoft.com/kb/949316 article.

The novel Compound TCP has the following properties:

  1. CTCP can efficiently use the network resource and achieve high link utilization.
  2. CTCP has the similar or even improved round-trip time (RTT) fairness regarding to regular TCP.
  3. CTCP keeps good TCP-friendliness.

CTCP is enabled by default for computers running Windows Server 2008 and disabled by default for computers running Windows Vista.

You can enable CTCP by entering the following command in an elevated command prompt:
    netsh interface tcp set global congestionprovider=ctcp

You can also disable CTCP by entering the following command in an elevated command prompt:
    netsh interface tcp set global congestionprovider=none



In addition, Microsoft has also added support for Explicit Congestion Notification (ECN). ECN allows end-to-end notification of network congestion without dropping packets. Without ECN, nеtwork congestion can cause packet loss because transmission do not decrease automatically and packets continue to be sent even though they will not be received due to the congestion. ECN allows packets to be marked if network congestion is detected and then uses this marking as a signal that the network is congested. Detection of marked packets will automatically slow down the sending. Windows Server 2008 and Windows Vista support ECN, but it is disabled by default. You can enable ECN support if you type the following command in an elevated command prompt:
    netsh interface tcp set global ecncapability=enabled

Group Logic has done extensive lab testing of MassTransit with the CTCP protocol and ECN. We have found them to enhance throughput by as much as 300 percent. Testing consisted of two Windows 2008 Servers with a network simulator between the servers. The network simulator allows the bandwidth and latency to be controlled. The figure below shows the detailed results.

The blue bars represent CTCP/ECN enabled and the red bars both disabled.

INFO:

For more information, please refer to:



Go to top


TCP/IP Secure

 

 

NOTE:

TCP/IP Secure communication method is available in MassTransit HP only.

TCP/IP Secure is an implementation of SSL (Secure Socket Layer) over TCP/IP. TCP/IP Secure is used to establish a secure and encrypted communication channel between two Internet connected devices. In MassTransit, you can configure your TCP/IP Secure connections to use the following encryption methods:

  • RC4-40
  • RC4-128
  • 3DES
  • AES-128
  • AES-256

AES-256 method performs the highest level of encryption to the transmitted files and it is the most secure method.

Selecting an encryption method with a higher level of encryption is more secure but increases the time for the file transfer.

MassTransit uses SSL to provide a certificate to calling parties to verify who they are. In addition, the certificate provides a public/private key combination that allows files to be encrypted and decrypted. The certificate verifies that the contact communicating with you is not an impostor. MassTransit works with two types of certificates:

  • Self-generated by MassTransit itself (which is the default option), or
  • Certificates issued by a Certificate Authority (CA) such as VeriSign or Thawte.

Using self-generated certificates allows you to avoid paying fees and maintenance issues. However, no one verifies that the certificate owner is who they claim to be. When you have a certificate, issued by a CA, they verify the identity of the other party you are about to connect to. You can buy a certificate from one of the well known Certificate Authorities, such as VeriSign or Thawte, or you can become your own CA and issue certificates for all the MassTransit servers within your organization.

When a secure connection is selected, MassTransit verifies the certificate presented by each caller. When MassTransit provides your certificate to a remote contact, it contains your identity name and your public key. The remote MassTransit server uses the public key contained in the certificate to encrypt files to be transferred. When you receive the encrypted file, MassTransit decrypts it using the private key. Since you are the only one who has the private key, you are the only one who can decrypt the files.


Go to top


Configuring TCP/IP Secure Incoming Calls

 


To receive an incoming TCP/IP Secure call on your MassTransit HP Server, you need to configure a TCP/IP Secure Listen.

 

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring a TCP/IP Secure Listen

 

 

NOTE:

MassTransit allows you to configure multiple TCP/IP listens.

To receive an incoming TCP/IP Secure call, you first need a TCP/IP Secure Listen:

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the TCP/IP Secure option.

    4. The TCP/IP Secure Configuration For Incoming Calls window appears. Select the IP address you want MassTransit to listen on from the IP Address to listen on for incoming calls drop-down menu. Selecting All means that MassTransit will be listening for incoming calls on all network interfaces. That is the default option. If you select a particular IP address, MassTransit will use only that address to listen on.

        

    5. Enter the port number that will be used for the TCP/IP Secure connection in the Port field, or leave the default setting.

NOTE:

If you or the calling party have a firewall, it must be set to allow traffic on this port.

    6. In the Minimum encryption level for incoming calls drop-down menu, you can set a level of encryption of the files. Selecting a particular encryption level will allow your server to receive incoming calls from users with the same or higher level of encryption. Incoming calls from contacts using an encryption method with a lower level of encryption will be rejected. The available methods are the following depending on the case:
         A. If the Use legacy SSLv2/3 protocol checkbox is checked, the available encryption methods are:
             - RC4-40;
             - RC4-128;
             - 3DES.
             These methods are not the most secure ones but they do not delay the file transfer time very much. 3DES is the method with highest level of encryption from the listed ones. For connections with MassTransit servers 6.0 and later, it is recommended to use methods higher than RC4-40.

         B. If the Use legacy SSLv2/3 protocol checkbox is NOT checked, the available encryption methods are:
             - RC4-128;
             - 3DES;
             - AES-128;
             - AES-256.
             The AES-128 and AES-256 are encryption methods from a new generation. AES-256 provides the highest level of encryption. It is a standard adopted by the U.S. government. Please consider the time transfer delay before selecting this encryption method.

    7. Click on the OK button to save the changed settings. The configured TCP/IP method should appear as active in the Setup window.

    8. Click on the OK button in the Setup window.

You should be able to receive incoming TCP/IP Secure calls now from contacts with the same or higher level of encryption set.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.


Go to top


Configuring TCP/IP Secure Outgoing Calls

 


In order to be able to place an outgoing TCP/IP Secure call to a contact, you need to configure that contact to use the TCP/IP Secure communication method.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and there are files for sending or receiving on TCP/IP Secure connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. You must restart the MassTransit service for changes to apply.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring a TCP/IP Secure Server Contact

 

 

NOTE:

This configuration is per contact. You need to set the TCP/IP Secure communication method for each contact that you want to use TCP/IP Secure.

Follow these steps for setting a TCP/IP Secure Server contact:

    1. In the MassTransit Administrator, open the Contacts window.

    2. In the Contacts window, click on the Add... button to add a new contact, or highlight an existing Server contact and click Edit... to edit it.

    3. Enter/change the desired information:
         a. if you are creating a new Server contact, see detailed information about how to do that on the Contacts page and then continue with the steps below.
         b. if you are editing an existing Server contact, continue with steps below.

    4. In the Outgoing Calls tab of the Setup window, select the TCP/IP Secure option from the Communication method drop-down menu.

        

    5. The TCP/IP Secure Configuration For Outgoing Calls window appears.

        

    6. In the top field of the window, type the hostname or the IP address of the Server contact.

    7. In the second field, enter the port number that the other server is listening on.

NOTE:

If you or the party you are calling have a firewall, it must be set to allow traffic on the specified port.

    8. In the Remote user's COMMON NAME field, enter the common name of the contact. The "Common name" is usually provided to you by the remote user and is a component of his SSL certificate. The default common name (which is "Auto-Generated by MassTransit") should be used only if the remote user is using a certificate that is automatically generated by MassTransit. Leaving this field blank will set the default option.

NOTE:

If the user's common name is different from the default one, he can locate it in the Setup window by following these steps:
    1. Open the Setup window of the MassTransit Administrator.
    2. Open the Security tab.
    3. Under the "SSL Certificate" area, the Use certificate issued by Certificate Authority checkbox would be checked. Click on the View... button to see information about the selected SSL certificate.

The resulting dialog will display the certificate's Issuer, Expiration Date, and Common Name. The Common Name is what must be entered on the "TCP/IP Secure Configuration For Outgoing Calls" window.

    9. Select the level of encryption that MassTransit will use to connect to the user from the Select the level of encryption to use drop-down menu.

   10. Click OK when the required information is entered. If you click Cancel the changes will not be saved.

    9. Click on the OK button in the "Contact Information" window to save the changes. If you click Cancel, the changes will be canceled.

The configuration of the TCP/IP Secure Server contact is complete. You should be able to place a call to the remote TCP/IP Secure server.

INFO:

For information about how to place a call, see Connecting to Other Servers section on the Contacts page.



Go to top


Configuring an SSL Certificate


You can choose what certificate to use for the SSL authentication:

  • Automatically generated by MassTransit SSL certificate – this certificate includes public and private keys for encrypting files. Creating your own certificates allows you to avoid fees and maintenance issues. However, no one verifies that the certificate owner is who they claim to be and you may be susceptible to some forms of attacks that break encryption called “man-in-the-middle” attacks.
  • Using your own Certificate Authority – you can create your own certificate authority using the OpenSSL Toolkit. Creating your own authority allows you to avoid paying fees. For more information and detailed instructions on how to create your own authority, go to the website www.openssl.org.
  • Certificate issued by a Trusted Certificate Authorities (CA) – it verifies that the information in a certificate accurately represents who it claims to represent. The authority charges to provide a certificate, usually by the year. Usually, you contact a CA at their web site and request a certificate. Two popular CAs issuing certificates are VeriSign® and Thawte®. Visit their web sites for more information at www.verisign.com and www.thawte.com.

The certificate configuration can be set in the Setup window of the MassTransit Administrator. To do that, follow the steps below:

    1. Open the Setup window of the MassTransit Administrator by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. Open the Security tab of the Setup window.

    3. In the SSL Certificate section, you can choose whether to use an automatically generated by MassTransit certificate or a certificate issued by a Certificate Authority. The default option is the MassTransit certificate.

        

         a. If you choose to have MassTransit generate the SSL certificate, MassTransit creates a private key, creates a certificate request, and then signs the certificate request creating the certificate. The pass phrase for the private key file is automatically generated. In this case, just click Cancel in the Setup window and your certificate configuration is done. You do not need to perform the steps below.
         b. If you want to use a certificate issued by a Root Certificate Authority, continue with the steps below.

    4. To use a certificate issued by a Root Certificate Authority, check the Use certificate issued by Certificate Authority check box in the SSL Certificate section.

        

    5. Next, click on the Choose... button next to the Private Key File field and select the private key file for the certificate. Then, click Open.

    6. In the Password window that appears, enter the password for the private key and click OK in order to load the file in MassTransit.

        

    7. Enter the private key password in the Enter password for private key field in order to enable MassTransit to use the file without being prompted for a password.

    8. To choose a certificate, click on the Choose... button next to the Enter password for private key field and select the certificate file. Then, click Open.

    9. The certificate file should be loaded and its path and name should be displayed in the Certificate File field.

   10. When you have selected a certificate file, you can see certificate information if you click on the View... button. The following certificate information should be displayed: file name, common name (used in the outgoing calls configuration), "not valid before" date, expiration date, and certificate issuer. Click OK to close the window.

   11. When you are ready with the SSL certificate configuration, click on the OK button in the Setup window in order to save the changes.


Go to top


Configure Trusted Root Certificate Authorities

 


Trusted Certificate Authorities (CA) verify that the information in a certificate accurately represents who it claims to represent. They charge to provide a certificate, usually by the year. Usually, you contact a CA at their web site and request a certificate. Two popular CAs issuing certificates are VeriSign® and Thawte®. Visit their web sites for more information at www.verisign.com and www.thawte.com.

In the Setup window of the MassTransit Administrator, there is a list with the trusted root certificate authorities. You can add/remove authorities to/from the list and observe the issued certificates following these steps:

Add a CA to the list
    1. Open the Setup window of the MassTransit Administrator by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. Open the Security tab of the Setup window.

    3. In the Trusted Root Certificate Authorities section, click on the Import... button.

        

    4. In the window that appears, select a X.509 certificate file to import and click Open. The Certificate Authority that issued the certificate should be added to the list with trusted authorities. Then, when you attempt to connect to users using a certificate that is issued by this authority, MassTransit will recognize it as a trusted one and will establish a secure connection to the user.

INFO:

X.509 is a standard format for public key certificates issued by a Certificate Authority.

    5. When the trusted CA is added to the list, click on the OK button in the Setup window in order to save the changes.

View information for a certificate issued by a particular CA
    1. Open the Setup window of the MassTransit Administrator by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. Open the Security tab of the Setup window.

    3. In the Trusted Root Certificate Authorities section, click on the View... button. The Certificate Information window appears next displaying the following information: file name, common name (used in the outgoing calls configuration), "not valid before" date, expiration date, and certificate issuer. Click OK to close the window.

Remove a CA from the list
    1. In the Setup window of the MassTransit Administrator, open the Security tab.

    2. In the Trusted Root Certificate Authorities section, highlight a CA from the list and click on the Remove button.

    3. A dialog box for deletion confirmation appears. Click Delete if you are sure you want to remove the record from the list with trusted root CAs. Otherwise, click Cancel.

    4. When you are ready with the configuration of the trusted root CAs list, click on the OK button in the Setup window in order to save the changes.


Go to top


UDT

 


UDT is a high performance data transfer protocol based on the User Datagram Protocol (UDP). It is a new generation protocol that can transfer large files for a short time like UDP but with its own reliability control and congestion control mechanisms. In addition, multiple UDT flows can share a single UDP port, thus a firewall can open only one UDP port for all UDT connections.

MassTransit UDT transfer mode can give you better performance than TCP/IP in some network environments (mainly wide area networks – WAN). Parameters including latency, packet loss, and bandwidth – all can be factors in the improved performance, possible with UDT transfer mode.

To determine if using UDT is beneficial, it is best to compare the transfer speeds between UDT and TCP/IP in your real world situation with typical file size transfers.

NOTE:

UDT communication method is available in MassTransit HP only.



Go to top


Configuring UDT Incoming Calls

 


To receive an incoming UDT call on your MassTransit HP Server, you need to configure an UDT Listen.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and there are files for sending or receiving on UDT connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. You must restart the MassTransit service for changes to apply.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring an UDT Listen

 

 

NOTE:

MassTransit allows you to configure multiple UDT listens.

To receive an incoming UDT call, you first need a UDT Listen:

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the UDT option.

    4. The Configure UDT for Incoming Calls window appears. Select the IP address you want MassTransit to listen on from the IP Address to listen on for incoming calls drop-down menu. MassTransit will use only that address to listen on.

NOTE:

You can set the UDT listen to the same IP address and port number as set in one of the TCP/IP listens. In that case, if a Web client contact uses UDT as a default communication method and an error occurs with the UDT connection, the Web client contact will automatically failover to TCP/IP communication. In case the Web client contact uses an older version of the MassTransit Assistant, that does not support UDT, the connection will also be switched to TCP/IP.

        

    5. Enter the port number that will be used for the UDT connection in the Port field, or leave the default setting.

NOTE:

If you or the calling party have/has a firewall, it must be set to allow traffic on this port.

    6. Click on the OK button to save the changed settings. The configured UDT method should appear as active in the Setup window.

    7. Click on the OK button in the Setup window.

You should be able to receive incoming UDT calls now.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.


Go to top


Configuring UDT Outgoing Calls

 


In order to be able to place an outgoing UDT call to a contact, you need to configure that contact to use the UDT communication method.

INFO:

In MassTransit HP 7.0.1, there is a new option available to prevent "File Transfer Failed" actions firing (if configured) when Receive Files From User or Send Files To User general privileges are disabled.

When Send Files To User or Receive Files From User privileges are disabled and there are files for sending or receiving on UDT connections, a warning is logged. This warning causes actions with File Transfer Fails trigger condition to fire. This behavior can be disabled by setting the "LOG_SEND_RECV_PRIVILEGE_AS_WARNING" parameter in the MassTransitEngine.cfg file (the file is located in the MassTransit installation directory) to false as shown below:
    LOG_SEND_RECV_PRIVILEGE_AS_WARNING = FALSE
This will cause the messages to be logged as "Info" instead of "Warning", which will prevent the "File Transfer Fails" actions from firing. You must restart the MassTransit service for changes to apply.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring an UDT Server Contact

 

 

NOTE:

This configuration is per contact. You need to set the UDT communication method for each contact that you want to use UDT.

Follow these steps for setting a UDT Server contact:

    1. In the MassTransit Administrator, open the Contacts window.

    2. In the Contacts window, click on the Add... button to add a new contact, or highlight an existing Server contact and click Edit... to edit it.

    3. Enter/change the desired information:
         a. if you are creating a new Server contact, see detailed information about how to do that on the Contacts page and then continue with the steps below.
         b. if you are editing an existing Server contact, continue with steps below.

    4. In the Outgoing Calls tab of the Setup window, select the UDT option from the Communication method drop-down menu.

        

    5. The Configure UDT for Calls window appears.

        

    6. In the upper field of the window, type the hostname or the IP address of the Server contact.

    7. In the second field, enter the port number that the other server is listening on.

NOTE:

If you or the party you are calling have a firewall, it must be set to allow traffic on the specified port.

    8. Click OK when the required information is entered. If you click Cancel the changes will not be saved.

    9. Click on the OK button in the "Contact Information" window to save the changes. If you click Cancel, the changes will be canceled.

The configuration of the UDT Server contact is complete. You should be able to place a call to the remote UDT server.

INFO:

For information about how to place a call, see Connecting to Other Servers section on the Contacts page.




Go to top


Forward Via

 

 

NOTE:

Forward Via is available in MassTransit HP only.

In MassTransit HP, you can send files to any contact without establishing a direct connection with it but via a middle server using the Forward Via communication method.

Forward Via communication method forwards all files, designated to any configured contact (C), through a middle Server contact (B). When you send files to a contact (C), all files that are addressed to that contact will be sent to another MassTransit Server contact (B) first and then will be forwarded to contact (C).

If you set a Server contact to use Forward Via as a communication method for placing outgoing calls, the communication protocol which will be used for the file transfer is the one that is configured for the forwarding server (the middle server B).

There are no configurations that need to be set on your server to accept an incoming Forward Via call except an active listen corresponding to the communication method that you use to communicate with the forwarding server (middle server B).


Go to top


Configure Forward Via Outgoing Calls

 


The Forward Via configuration of outgoing calls is set per contact. You need to do it for every contact that will be using the Forward Via communication method.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configure a Forward Via Server Contact

 

 

NOTE:

This configuration is per contact. You need to set the Forward Via communication method for each contact that you want to use Forward Via.

Follow these steps for setting a Forward Via Server contact:

    1. In the MassTransit Administrator, open the Contacts window.

    2. In the Contacts window, click on the Add... button to add a new Server contact, or highlight an existing Server contact and click Edit... to edit it.

    3. Enter/change the desired information:
         a. if you are creating a new Server contact, see detailed information about how to do that on the Contacts page and then continue with the steps below.
         b. if you are editing an existing Server contact, continue with steps below.

    4. In the Outgoing Calls tab of the Setup window, select the Forward Via option from the Communication method drop-down menu.

        

    5. The Forward Via Configuration window appears.

        

    6. From the Forwarding Contact drop-down menu, select the middle Server contact that will forward the files to the final destination (which is the Server contact you are editing/creating). On the middle Server (B), there must be a contact with name identical to the receiving contact (C) name (a contact of any type). When the files are received on the middle Server, they will be placed in the To Be Forwarded mailbox folder of the contact's mailbox. Then, the middle Server will forward them to the receiver as a connection is established between them.

INFO:

When your MassTransit Server is the middle server of a Forward Via transfer, the files will also be received in the To Be Forwarded mailbox folder of the contact who sent the files. Whenever a connection is established between your server and the file recipient, the files will be moved from the To Be Forwarded folder into the Sent mailbox folder.

    7. Click on the OK button in the "Forward Via Configuration" window to save the settings. If you click "Cancel", the changed settings will not be saved.

    8. Click on the OK button in the "Contact Information" window to save the settings. If you click "Cancel", the changed settings will not be saved.

The configuration of the Forward Via contact is complete.

INFO:

For information about how to place a call, see Connecting to Other Servers section on the Contacts page.



Go to top


Hot Folders

 

 

NOTE:

Hot Folder communication method is available in MassTransit HP only.

A Hot Folder is a folder that behaves as a mailbox for sending and receiving files between MassTransit and another application (that can also be MassTransit). The actual Hot Folder communication is configured by creating sub folders of the hot folder for the incoming and outgoing MassTransit jobs. For this purpose, you need to set both MassTransit and the other system to watch the hot folder for files.

When you send files using the Hot Folder method of communication, MassTransit transfers the files to the outgoing hot folder you designated. Instead of listening for calls, MassTransit periodically checks the incoming hot folder for received files.

Hot folders may be on local or remote network volumes. You can use hot folders with any program that recognizes incoming and outgoing jobs in hot folders.


Go to top


Configuring Hot Folder Incoming Calls

 


As mentioned above, instead of listening for calls, MassTransit periodically checks the incoming hot folders for received files. This section provides you with detailed instructions about how to set MassTransit to check for files in the incoming hot folders.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring a Hot Folder Listen

 

 

NOTE:

MassTransit allows you to configure multiple Hot Folder listens.

Follow the steps below to set MassTransit to check for files in the incoming hot folders.

    1. In MassTransit Administrator, open the Setup window by clicking on the Setup button from the Navigation Bar or select the Setup... option from the Window main menu.

    2. In the Incoming Calls tab, click on the Add... button.

    3. The "Add Incoming Call" window appears. From the Method drop-down menu, select the Hot Folder option.

    4. The Configure Hot Folder Polling window appears. Enter how often you want MassTransit to check for files in the incoming hot folders in the field of the window.

        

    9. Click on the OK button to save the changed settings. The configured Hot Folder method should appear as active in the Setup window.

   10. Click on the OK button in the Setup window.

Enabling and Disabling the Listen
In the "Incoming Calls" tab of the Setup window, all created listens are listed. In the first column of the list, there is an indicator showing whether the listen is enabled or not.
    A. If the indicator is green, the listen is enabled.
    B. If the indicator is red, the listen is disabled.

To enable a disabled listen, highlight it and click on the Enable button of the "Incoming Calls" tab.

To disable an enabled listen, highlight it and click on the Disable button of the "Incoming Calls" tab.


Go to top


Configuring Hot Folder Outgoing Calls

 

 

NOTE:

You can configure outgoing Hot Folder calls on MassTransit HP only.

To connect to a contact using the Hot Folder method, you need to set it as an outgoing communication method for each contact you want.

INFO:

For information about available additional configurations, see the Additional Configurations section on this page.



Configuring a Hot Folder Server Contact

 

 

NOTE:

This configuration is per contact. You need to set the Hot Folder communication method for each contact that you want to use Hot Folders.

Follow these steps for setting an Hot Folder Server contact:

    1. In the MassTransit Administrator, open the Contacts window.

    2. In the Contacts window, click on the Add... button to add a new contact, or highlight an existing Server contact and click Edit... to edit it.

    3. Enter/change the desired information:
         a. if you are creating a new Server contact, see detailed information about how to do that on the Contacts page and then continue with the steps below.
         b. if you are editing an existing Server contact, continue with steps below.

    4. In the Outgoing Calls tab of the Setup window, select the Hot Folder option from the Communication method drop-down menu.

        

    5. The Configure Hot Folder Calls window appears.

        

    6. Click on the Choose... button next to the To field in order to select an outgoing sub folder of the hot folder. This would be the place where all files that are going to be sent to the contact are stored.

    7. Click on the Choose... button next to the Staging field in order to select a staging folder. The staging folder is the location where outgoing files are copied before being moved into the To folder.

    8. Click on the Choose... button next to the From field in order to select an incoming sub folder of the hot folder. All files for download are going to be stored in this folder.

    9. Under the "Options" area, there is a Create unique folder while transferring files checkbox. Selecting this option places all folders and files inside a newly created folder with a unique name to ensure that there are no conflicts with existing files. If you want duplicate folders and files to replace ones that already exist, uncheck this option and ensure that this user has Allow User To Replace Files enabled under the Security tab of the "Contact Information" window.

NOTE:

Disabling this option may cause problems with certain workflow systems such as WAM!NET.

   10. When you are ready with the Hot Folder configuration, click on the OK button to save the settings. If you click "Cancel", the changed settings will not be saved.

   11. Click on the OK button in the Setup window to save the settings. If you click "Cancel", the changed settings will not be saved.

The configuration of the Hot Folder Server contact is complete.

INFO:

For information about how to place a call, see Connecting to Other Servers section on the Contacts page.



Go to top


Additional Configurations

 


There are some very useful additional configurations that can be set. Find detailed information about how to configure them below.

Identify Your Server

 


Before connecting to another HP Server, you may want to verify the name to be used by MassTransit to identify yourself to the remote Server.

NOTE:

This name will be used to identify you at all contacts you have.

    1. Open the Setup window by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. In the Setup window, select the Outgoing Calls tab.

    3. Verify or change the name you want to use to identify yourself to the other Servers in the Server Name area of the window.

       

    4. Click on the OK button in the Setup window to save the changed settings.


Go to top


Receiving a Call from an Unknown Server

 


A calling Server is considered unknown until added to the receiving Server's Contacts window.

To accept a call from an unknown HP Server, follow these steps:

    1. Open the Setup window by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. In the Setup window, click the Special tab.

    3. In the Server-to-Server Connections area, click the option Accept Calls from Unknown MassTransit Servers.

       

         a. If you check the Require Password checkbox, you can enter a password (in the field next to the Require Password checkbox) which will be required for the calling server the first time they call you. Thereafter, a password will not be required, because MassTransit will recognize the calling Server.

NOTE:

For security, MassTransit encrypts passwords before storing them. As a result, scripts cannot access passwords.

NOTE:

Before calling another Server, make sure that the contact running the software has chosen to receive calls from unknown Servers and ask if a password is required.

If you do NOT want to accept calls from unknown servers, follow the steps above but click the Decline Calls from Unknown MassTransit Servers option in step 3 (Require Password checkbox will be disabled).


Go to top


Delay Automatic Calls

 


If you have configured automatic calls for a contact, you may set a delay before placing an automatic call. This useful if there are actions set to be performed before the file transmitting – in this case, the delay would assure the time for executing the action.

INFO:

Automatic calls can be set for server contacts only. For information about how to configure automatic calls to a contact, see Adding a New MassTransit HP Server Entry on the Contacts page.

    1. Open the Setup window by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. In the Setup window, select the Outgoing Calls tab.

    3. Under the "Delay Before Automatic Outgoing Calls" area, check the Wait for __ minute(s) before initiating a call to send files checkbox to enable delays.

       

    4. Set the delay period (in minutes) under the same section.

    5. Click on the OK button in the Setup window to save the changed settings.


Go to top


Simultaneous Calls Restrictions

 


By default, MassTransit allows unlimited count of simultaneous TCP/IP calls but no non-TCP/IP simultaneous calls. If you want to, you can restrict the maximum number of allowed simultaneous TCP/IP connections and/or allow simultaneous non-TCP/IP connections.

    1. Open the Setup window by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. In the Setup window, open the Outgoing Calls tab.

    3. To allow simultaneous non-TCP/IP calls:
         a. Under the "Simultaneous Calls Settings", check the Allow __ simultaneous non-TCP/IP outgoing calls checkbox if you want to restrict the number of simultaneous calls.

            

    4. To restrict the number of allowed simultaneous TCP/IP (and TCP/IP Secure) connections:
         a. Under the "Simultaneous Calls Settings", check the Restrict total simultaneous TCP/IP connections to __ connections checkbox.

            

         b. Under the same sections, there is another setting – Tell rejected incoming callers to retry in __ minute(s). It is used when there are calls that exceed the maximum number of simultaneous calls. In this case, a message will be sent to the calling contact to retry connecting after a predefined number of minutes.

    5. Click on the OK button in the Setup window to save the changed settings.


Go to top


Bandwidth Throttling

 

 

NOTE:

Bandwidth throttling configurations are allowed for TCP/IP and UDT connections only on MassTransit HP servers.

Bandwidth throttling settings allow you to restrict the total bandwidth of the TCP/IP and UDT connections. By default, the total bandwidth is not restricted and you can use the whole capacity of your communication channel. The minimum bandwidth throttling can be 400 kBytes/minute.

To restrict the bandwidth throttling of the communication channel, follow these steps:

    1. In the MassTransit Administrator application, open the Setup window by clicking on the Setup button from the Navigation Bar or by selecting the Setup... option from the Window main menu.

    2. In the Setup window, select the Outgoing Calls tab.

    3. Under the "MassTransit Protocol Bandwidth Throttling" area, check the Restrict bandwidth used by MassTransit Protocol connections checkbox.

        

    4. Under the same section, set the total bandwidth that the TCP/IP and UDT connections will share.

    5. Click on the OK button in the Setup window to save the changed settings.


Go to top


Configure MassTransit to Resist FTP/SFTP Attacks

 


MassTransit has a feature that detects FTP Server dictionary attacks where a remote user attempts to use long lists of possible words as user names and passwords in an attempt to gain unauthorized access to the MassTransit FTP Server. If such an attack is detected, MassTransit can ban further connections from the remote IP address or temporarily shut down the FTP Server Listen until the attack has ceased.

NOTE:

If you have more than one FTP Server configured to listen on a specific IP address, each FTP Server that is configured uses these settings independently and will only ban connections or shut down the FTP Server Listen based on the specific IP address that is under attack.

This feature consists of two configurable options. The first will ban a remote IP address after a pre-defined number of consecutive invalid logins and is enabled by default. The second option will shut down MassTransit’s FTP Server Listen after a pre-defined number of consecutive invalid logins in a specified time period and is disabled by default. Both options can be configured via settings in the MassTransitEngine.cfg file.

To configure MassTransit to resist FTP Server dictionary attacks:

NOTE:

Before continuing, it is strongly recommended that you make a backup copy of your MassTransitEngine.cfg file to prevent inadvertently overwriting any changes previously made to this file.

  1. The configuration options can be found in the sample MassTransitEngine.cfgfile, located inside the MassTransit installation folder, by default:
    1. MassTransit SFTP 7.0 and later:
      1. on 32-bit machines – C:\Program Files\Group Logic\MassTransit SFTP
      2. on 64-bit machines – C:\Program Files (x86)\Group Logic\MassTransit SFTP
    2. MassTransit HP 7.0:
      1. on 32-bit machines – C:\Program Files\Group Logic\MassTransit Server 7
      2. on 64-bit machines – C:\Program Files (x86)\Group Logic\MassTransit Server 7
    3. MassTransit HP 7.1 and later:
      1. on 32-bit machines – C:\Program Files\Group Logic\MassTransit Server
      2. on 64-bit machines – C:\Program Files (x86)\Group Logic\MassTransit Server
  2. Open the MassTransitEngine.cfg file in an application suitable for plain text edit and locate the SFTP / FTP Attack detection/prevention settingssection. Then, configure the desired settings:

    NOTE:

    All lines in the MassTransitEngine.cfg file that have '%%' at the beginning are considered commented and therefore ignored. Remove the '%%' (if there are any) at the beginning of the settings you change in order to active them.

    1. RESTRICT_FAILED_FTP_LOGINS_FROM_SINGLE_IP=TRUE – this option is enabled by default. When it is set to TRUE, it bans SFTP / FTP access from a remote IP address if there are more than "X" consecutive failed logins.
    2. MAX_FAILED_FTP_LOGINS_FROM_SINGLE_IP=100 – this option is enabled by default. It specifies the number of failed consecutive SFTP / FTP logins before the remote IP address is banned.
    3. FAILED_FTP_LOGIN_BLACKOUT_PERIOD=120 – this option is enabled by default. It configures the number of seconds to ban remote IP address if too many failed logins are received.
    4. Optional SFTP / FTP Listen Shutdown Options:
      1. LIMIT_TOTAL_FAILED_FTP_LOGINS=TRUE – this option is not enabled by default. Set it to TRUE to limit the TOTAL number of consecutive failed SFTP / FTP logins within a certain time period (specified under the TOTAL_FAILED_FTP_LOGIN_PERIOD setting).
      2. TOTAL_MAX_FAILED_FTP_LOGINS=200 – this option is not enabled by default. It specifies the MAXIMUM number of consecutive failed logins allowed before shutting down MassTransit’s SFTP / FTP Listen.
      3. TOTAL_FAILED_FTP_LOGIN_PERIOD=5 – this option is not enabled by default. It specifies the time period (in seconds) to use for the number of failed SFTP / FTP logins.
  3. When you have configured the desired settings, save and close the MassTransitEngine.cfg configuration file.
  4. In order to apply the changes immediately, you need to restart the MassTransit service:
    1. Open the Services console from Start → Administrative Tools → Services.
    2. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Stop button from the Services tool bar, or select the Stop option from the context menu of the service.
    3. Highlight the MassTransit Transporter service and click on the Restart button from the Services tool bar, or select the Restart option from the context menu of the service;
    4. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Start button from the Services tool bar, or select the Start option from the context menu of the service.



Go to top


Securing Web Services (SOAP) Communications with a Firewall

 


MassTransit HP servers utilize a web services (SOAP) interface for communication between the MassTransit web site and the MassTransit engine. Without the proper security measures in place, the web services interface may be accessible to malicious attacks. Because MassTransit systems may sit outside of an organization’s firewall in the demilitarized zone (DMZ), it may be necessary to firewall the ports used for web services to protect them from malicious activity.

It is recommended that your firewall restrict communication on the MassTransit web services port – 50050 – to the IP addresses of servers hosting approved applications that need web services access to MassTransit.

In a default MassTransit HP installation, all web services calls should be local as the MassTransit web site is configured to run on the same machine as the MassTransit engine. If you have custom applications that utilize the MassTransit web services interface that reside on other servers, you should add the IP addresses of those servers to the firewall whitelist. This configuration will prevent unknown servers from gaining access to the MassTransit web services interface.


Go to top


Configure Listen Reposting in Case of Listen Failure

 


In order to assure continuous communication between the MassTransit server and its contacts, listen reposting can be configured. When listen reposting is set, MassTransit will try to restore the communication automatically in case of a listen failure.

To configure listen reposting, follow these steps:

    1. Open the MassTransit.cfg file located in the MassTransit installation directory in an application suitable for plain text edit. By default, the directory is located in:
         a. for MassTransit HP 7.0:
            i. on 32-bit machines: ~\Program Files\Group Logic\MassTransit Server 7
            ii. on 64-bit machines: ~\Program Files (x86)\Group Logic\MassTransit Server 7
         b. for MassTransit HP 7.1 and later:
            i. on 32-bit machines: ~\Program Files\Group Logic\MassTransit Server
            ii. on 64-bit machines: ~\Program Files (x86)\Group Logic\MassTransit Server
         c. for MassTransit SFTP:
            i. on 32-bit machines: ~\Program Files\Group Logic\MassTransit SFTP
            ii. on 64-bit machines: ~\Program Files (x86)\Group Logic\MassTransit SFTP

NOTE:

All lines beginning with '%%' in the MassTransit.cfg file are considered commented and therefore ignored. Please ensure that all settings you change are uncommented (if you see "%%" characters at the beginning of any of the settings you modify, delete them).

    2. Locate the "Listen Reposting [in minutes]" section and configure the desired settings:
         a. LISTEN_REPOST_INTERVAL = 5 – this setting configures the interval (in minutes) MassTransit should wait before it retries enabling the failed listen.
         b. LISTEN_RETRY_MAX = 12 – configures how many times MassTransit should retry enabling the failed listen.

    3. When you ready with the configurations, save and close the MassTransit.cfg file.

    4. In order to apply the changes immediately, you need to restart the MassTransit service:
         a. Open the Services console from Start → Administrative Tools → Services.
         b. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Stop button from the Services tool bar, or select the Stop option from the context menu of the service.
         c. Highlight the MassTransit Transporter service and click on the Restart button from the Services tool bar, or select the Restart option from the context menu of the service;
         d. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Start button from the Services tool bar, or select the Start option from the context menu of the service.


Go to top


Connecting to Other Servers

 


When you have created a Server entry, you can connect to it by following these steps:

    1. Open the Contacts window by clicking on the Contacts button from the Navigation Bar or by selecting the Contacts option from the Window main menu.

    2. In your Contacts window, select the name of the other Server and click on the Connect button. You may need to type a password if the other server has required one.

NOTE:

Before calling another Server, make sure that the contact running the software has chosen to receive calls from unknown Servers and ask if a password is required.

When the connection is made, the calling Server is automatically added to the receiving Server's Contacts window.

INFO:

See the Transferring Files page for information about sending files to a Server.



Go to top


Tuning MassTransit

 


MassTransit allows you to tune the MassTransit protocol (TCP/IP, TCP Secure, and UDT) in order to increase the MassTransit performance. In addition, there are specific tuning settings which can be configured for the TCP/IP and UDP protocols.

See detailed information about the MassTransit tuning settings below.


Go to top


MassTransit Protocol Tuning Settings

 


The MassTransit protocol is a set of rules for the TCP/IP, TCP/IP Secure, and UDT connections. To tune the MassTransit protocol, follow these steps:

    1. Open the MassTransitEngine.cfg configuration file in an application suitable for plain text edit. The file is located in the installation directory of MassTransit which by default is located in:
         a. On 32-bit machines:
            i. MassTransit HP 7.0 – C:\Program Files\Group Logic\MassTransit Server 7
            ii. MassTransit HP 7.1 and later – C:\Program Files\Group Logic\MassTransit Server
         b. On 64-bit machines:
            i. MassTransit HP 7.0 – C:\Program Files (x86)\Group Logic\MassTransit Server 7
            ii. MassTransit HP 7.1 and later – C:\Program Files (x86)\Group Logic\MassTransit Server

    2. Locate the MassTransit protocol tuning settings area and configure the desired settings:

NOTE:

Uncomment the settings you configure if they are commented out in order to activate them. You can do that by deleting the '%%' at the beginning of the line.

         a. MTP_XFER_BLOCK_SIZE_FACTOR = 89 – configures the size of the blocks used when transferring files in bytes; represents the multiplication factor of TCP maximum segment size (MSS). The maximum segment size is an option of the TCP protocol that specifies the largest amount of data that a computer can receive in a single, unfragmented piece. Here are some example values of the multiplication factor for Ethernet MSS of 1460:

FACTOR

XFER_BLOCK_SIZE

16K

11 x 1460 = 16060 - 64 = 15996

32K

22 x 1460 = 32120 - 64 = 32056

64K

44 x 1460 = 64240 - 64 = 64176

128K

89 x 1460 = 129940 - 64 = 129876

256K

179 x 1460 = 261340 - 64 = 261276

1M

718 x 1460 = 1048280 - 64 = 1048216

         b. MTP_DISABLE_DISK_IO_READS = FALSE – when set to TRUE, all reading from disk during a file transfer is disabled and the random contents of any buffer are sent instead. Used for eliminating disk I/O (in/out) performance issues when trying to tune network throughput.
         c. MTP_DISABLE_DISK_IO_WRITES = FALSE – when set to TRUE, all writing to disk during a file transfer is disabled and no data is written to disk. Received files are the correct size when viewed from the Windows Explorer because the file size is set by updating the directory structure.
         d. MTP_USE_UNBUFFERED_WRITES=TRUE – when set to TRUE, this setting causes MassTransit to use unbuffered writes to disk when receiving files using TCP/IP. In certain cases, there is a significant performance increase to be had by using unbuffered disk writes.
         f. MTP_FORCE_NETWORK_CRC_CHECKING_ON_MTP = FALSE – when set to TRUE, CRC (cyclic redundancy check) checking is performed on all network traffic for the MassTransit Protocol. CRC errors can occur even on reliable links due to unexpected defects in network routers, switches, drivers, or MassTransit itself. This is extremely rare in a properly functioning environment and so this setting should only be used for diagnosing corruption problems. CRC errors that are detected will result in an error in the MassTransit log and a termination of the connection. Enabling this will mark all data being sent from this MassTransit server with a CRC for checking by the remote server. The setting needs to be enabled on both sides of a connection for full bi-directional CRC checking.

NOTE:

Note that turning on CRC checking on the MTP may impact performance on fast links.

    3. When you have configured the desired settings, save and close the MassTransitEngine.cfg configuration file.

    4. In order to apply the changes immediately, you need to restart the MassTransit service:
         a. Open the Services console from Start → Administrative Tools → Services.
         b. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Stop button from the Services tool bar, or select the Stop option from the context menu of the service.
         c. Highlight the MassTransit Transporter service and click on the Restart button from the Services tool bar, or select the Restart option from the context menu of the service;
         d. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Start button from the Services tool bar, or select the Start option from the context menu of the service.


Go to top


TCP/IP Tuning Settings

 


Besides the MassTransit protocol tuning settings, there are additional settings for tuning the TCP/IP communication. To tune TCP/IP, follow these steps:

    1. Open the MassTransitEngine.cfg configuration file in an application suitable for plain text edit. The file is located in the installation directory of MassTransit which by default is located in:
         a. On 32-bit machines:
            i. MassTransit HP 7.0 – C:\Program Files\Group Logic\MassTransit Server 7
            ii. MassTransit HP 7.1 and later – C:\Program Files\Group Logic\MassTransit Server
         b. On 64-bit machines:
            i. MassTransit HP 7.0 – C:\Program Files (x86)\Group Logic\MassTransit Server 7
            ii. MassTransit HP 7.1 and later – C:\Program Files (x86)\Group Logic\MassTransit Server

    2. Locate the TCP/IP tuning settings area and configure the desired settings:

NOTE:

Uncomment the settings you configure if they are commented out in order to activate them. You can do that by deleting the '%%' at the beginning of the line.

         a. TCP_MSS_SIZE = 1460 – the TCP MSS size is the amount of data that can fit into an individual IP packet in bytes. This is typically 1460 bytes, which is the size of the Ethernet frame minus 40 byte for IP and TCP headers. This value is used by MassTransit to size various buffers to prevent mis-alignment of IP frames.
         b. TCP_SEND_MSS_FACTOR = 11 – amount of data to be issued per send request to the TCP stack, represented as the number of TCP_MSS_SIZE units. Increasing this value higher than the TCP stack's internal send buffers can result in performance degradation.
         c. TCP_SEND_CIRCULAR_BUFFER_SIZE = 262144 – size of circular send buffer used by networking threads when writing to the network in bytes. Must be a value bigger than MTP_XFER_BLOCK_SIZE_FACTOR * TCP_MSS_SIZE for MassTransit Protocol.
         d. TCP_RECV_CIRCULAR_BUFFER_SIZE = 262144 – size of circular send buffer used by networking threads when writing to the network in bytes. Must be a value bigger than MTP_XFER_BLOCK_SIZE_FACTOR * TCP_MSS_SIZE for MassTransit Protocol.
         e. TCP_SOCKET_BUFFER_SIZE = 256960 – size of the socket buffers used for TCP window sizing in bytes. This is the value passed to setsockopt() function with SO_SNDBUF and SO_RCVBUF. The value depends on the general size of the pipe (of the connection channel) and the connection latency.

NOTE:

This setting has no impact on Windows 2008 Server or later because it performs TCP window auto-tuning. It should only be used for Windows Server 2003 / 2003R2.

To properly enable this on Windows 2003/2003R2, you must enable RFC1323 window scaling by adding the following registry keys to:
    \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters

Key Name

Type

Value

Tcp1323Opts

DWORD

      1

GlobalMaxTcpWindowSize

DWORD

16777216

NOTE:

To open the Registry Editor: click Start, click Run, type regedit, and then click OK.

The value should be set to multiple of MSS less than 64K multiplied by a scale factor that is a power of two.
The chart below shows suitable values at different bandwidths and latency. The ideal buffer size is calculated by the formula:
    [buffersize] = [round trip time (ping time)] * throughput
    e.g. 65536 / 1460 = 44 * 1460 = 64240 * 2^0 = 64240

BUFFER SIZE

LATENCY

 

<5ms RTT

40ms RTT

80ms RTT

200ms RTT

64240 * 2^0 = 64240 [~64K]

100Mbps

10Mbps

2Mbps

2Mbps

64240 * 2^1 = 128480 [~128K]

 

 

10Mbps

 

64240 * 2^2 = 256960 [~256K]

 

45Mbps

 

10Mbps

64240 * 2^3 = 513920 [~512K]

1000Mbps

100Mbps

45Mbps

 

64240 * 2^4 = 1027840 [~1024K]

 

 

100Mbps

45Mbps

64240 * 2^5 = 2055680 [~2048K]

 

 

 

100Mbps

If TCP_SOCKET_BUFER_SIZE is 0, then no modifications are made. This value is forced as the setting for Windows 2008 Server and later.

    3. When you have configured the desired settings, save and close the MassTransitEngine.cfg configuration file.

    4. In order to apply the changes immediately, you need to restart the MassTransit service:
         a. Open the Services console from Start → Administrative Tools → Services.
         b. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Stop button from the Services tool bar, or select the Stop option from the context menu of the service.
         c. Highlight the MassTransit Transporter service and click on the Restart button from the Services tool bar, or select the Restart option from the context menu of the service;
         d. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Start button from the Services tool bar, or select the Start option from the context menu of the service.


Go to top


UDP Tuning Settings

 


In addition to the MassTransit protocol tuning settings, there are additional settings for tuning the UDP communication. To tune UDP, follow these steps:

    1. Open the MassTransitEngine.cfg configuration file in an application suitable for plain text edit. The file is located in the installation directory of MassTransit which by default is located in:
         a. On 32-bit machines:
            i. MassTransit HP 7.0 – C:\Program Files\Group Logic\MassTransit Server 7
            ii. MassTransit HP 7.1 and later – C:\Program Files\Group Logic\MassTransit Server
         b. On 64-bit machines:
            i. MassTransit HP 7.0 – C:\Program Files (x86)\Group Logic\MassTransit Server 7
            ii. MassTransit HP 7.1 and later – C:\Program Files (x86)\Group Logic\MassTransit Server

    2. Locate the UDP tuning settings area and configure the desired settings:

NOTE:

Uncomment the settings you configure if they are commented out in order to activate them. You can do that by deleting the '%%' at the beginning of the line.

         a. UDP_MSS_SIZE = 1052 – the MSS is the maximum UDP packet size in bytes, including all UDT, UDP and IP headers of the packet. Default on Windows it is 1052, because of limitations on how the Windows network driver handles larger UDP packets. To increase this value to 1500, the following registry setting needs to be modified on Windows:
            HKLM\System\CurrentControlSet\Services\Afd\Parameters\FastSendDatagramThreshold (DWORD) -> 1500

INFO:

For more information on modifying the registry, please see http://support.microsoft.com/kb/235257.

    3. When you have configured the desired settings, save and close the MassTransitEngine.cfg configuration file.

    4. In order to apply the changes immediately, you need to restart the MassTransit service:
         a. Open the Services console from Start → Administrative Tools → Services.
         b. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Stop button from the Services tool bar, or select the Stop option from the context menu of the service.
         c. Highlight the MassTransit Transporter service and click on the Restart button from the Services tool bar, or select the Restart option from the context menu of the service;
         d. Highlight the MassTransit (for MassTransit SFTP, the service name is MassTransit SFTP) service and click on the Start button from the Services tool bar, or select the Start option from the context menu of the service.


Go to top