diff options
author | Loïc Hoguin <[email protected]> | 2012-12-13 17:35:07 +0100 |
---|---|---|
committer | Loïc Hoguin <[email protected]> | 2012-12-13 17:35:07 +0100 |
commit | 69192a2a3c5fbfa00c3f4fb7b9628512c8ef55ae (patch) | |
tree | d34d0beabbb95bc15b1a8da5194e467fdc3d654f /guide/listeners.md | |
parent | fb7ed3807620f7534c617789e7347192838a419a (diff) | |
download | ranch-69192a2a3c5fbfa00c3f4fb7b9628512c8ef55ae.tar.gz ranch-69192a2a3c5fbfa00c3f4fb7b9628512c8ef55ae.tar.bz2 ranch-69192a2a3c5fbfa00c3f4fb7b9628512c8ef55ae.zip |
Improve guide on listening on privileged ports
Making people happy one IRC channel at a time.
Diffstat (limited to 'guide/listeners.md')
-rw-r--r-- | guide/listeners.md | 17 |
1 files changed, 12 insertions, 5 deletions
diff --git a/guide/listeners.md b/guide/listeners.md index 59aa990..1f7c430 100644 --- a/guide/listeners.md +++ b/guide/listeners.md @@ -99,12 +99,19 @@ argument is the name of the listener you gave in `ranch:start_listener/6`. Port = ranch:get_port(tcp_echo). ``` -Listening on a port =< 1024 ---------------------------- +Listening on privileged ports +----------------------------- -This is currently not possible. We recommend the use of load balancing -or NAT firewall rules if the need arise. Proxies can sometimes also be -used although that's a less efficient solution. +Some systems limit access to ports below 1024 for security reasons. +This can easily be identified by an `{error, eacces}` error when trying +to open a listening socket on such a port. + +The methods for listening on privileged ports vary between systems, +please refer to your system's documentation for more information. + +We recommend the use of port rewriting for systems with a single server, +and load balancing for systems with multiple servers. Documenting these +solutions is however out of the scope of this guide. Limiting the number of concurrent connections --------------------------------------------- |