Restrict access to remote dgate command line

    Hi,


    Is it possible to restrict access to the dgate command line for remote machines?
    It is kind of tricky that you can delete data for example from a Conquest instance on a remote pc.


    I'm using/testing version 1.4.19.


    Best regards,
    Dave

    I agree it is. I therefore suggest to always use conquest behind a firewall.


    Dgate uses a specially formatted c-echo to control the system. In dgatesop.lst you can define remote AE's that are allowed access.


    Alternatively you can use an [lua]command script line to call reject() on any echo that does not come from localhost.


    This works if added to dicom.ini!


    [Lua]
    Command = if Association.ConnectedIP~='127.0.0.1' and Command.CommandField=="48" then reject() end


    For testing you can add to the same line:


    print(Association.ConnectedIP, Command.CommandField);


    Marcel

    Thanks Marcel


    I used the lua command and it is working with a slightly modified line:


    [Lua]
    Command = if Association.ConnectedIP~="127.0.0.1" and Command.CommandField=="48" then script("reject") end


    Dave

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!

Register Yourself Login