Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

Not only is UNIX dead, it's starting to smell really bad. -- Rob Pike

devel / comp.protocols.dicom / Remote Testing

SubjectAuthor
* Remote TestingBill Lamb
`- Re: Remote TestingMarkus Sabin

1
Remote Testing

<86f81dab-9e75-4ff4-a601-28bc034bfe7dn@googlegroups.com>

  copy mid

https://www.rocksolidbbs.com/devel/article-flat.php?id=234&group=comp.protocols.dicom#234

  copy link   Newsgroups: comp.protocols.dicom
X-Received: by 2002:a37:b5c4:: with SMTP id e187mr4528081qkf.27.1633630475837;
Thu, 07 Oct 2021 11:14:35 -0700 (PDT)
X-Received: by 2002:ac8:4b52:: with SMTP id e18mr4066163qts.213.1633630475613;
Thu, 07 Oct 2021 11:14:35 -0700 (PDT)
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!news.misty.com!border2.nntp.dca1.giganews.com!nntp.giganews.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.protocols.dicom
Date: Thu, 7 Oct 2021 11:14:35 -0700 (PDT)
Injection-Info: google-groups.googlegroups.com; posting-host=2601:282:8301:bf40:7970:210b:339c:37a5;
posting-account=FM-BrQoAAABh0R1L0lYwVjUuEPyfbZbF
NNTP-Posting-Host: 2601:282:8301:bf40:7970:210b:339c:37a5
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <86f81dab-9e75-4ff4-a601-28bc034bfe7dn@googlegroups.com>
Subject: Remote Testing
From: billlamb62@gmail.com (Bill Lamb)
Injection-Date: Thu, 07 Oct 2021 18:14:35 +0000
Content-Type: text/plain; charset="UTF-8"
Lines: 0
 by: Bill Lamb - Thu, 7 Oct 2021 18:14 UTC

We have many hospitals around the country. Can someone make a suggestion on how I can remotely test a modality at the hospital with sending images to a PACS or getting patients thru the worklist at the modality.

Re: Remote Testing

<faccf8f4-7c3f-4c3c-9c69-8826c4c0fca0n@googlegroups.com>

  copy mid

https://www.rocksolidbbs.com/devel/article-flat.php?id=235&group=comp.protocols.dicom#235

  copy link   Newsgroups: comp.protocols.dicom
X-Received: by 2002:a37:ab15:: with SMTP id u21mr1427935qke.394.1633674294745;
Thu, 07 Oct 2021 23:24:54 -0700 (PDT)
X-Received: by 2002:ac8:5705:: with SMTP id 5mr7030097qtw.184.1633674294555;
Thu, 07 Oct 2021 23:24:54 -0700 (PDT)
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!news.misty.com!border2.nntp.dca1.giganews.com!nntp.giganews.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.protocols.dicom
Date: Thu, 7 Oct 2021 23:24:54 -0700 (PDT)
In-Reply-To: <86f81dab-9e75-4ff4-a601-28bc034bfe7dn@googlegroups.com>
Injection-Info: google-groups.googlegroups.com; posting-host=212.204.96.130; posting-account=FpWjmwoAAADouxZodjPwb9TZUXzY1wOz
NNTP-Posting-Host: 212.204.96.130
References: <86f81dab-9e75-4ff4-a601-28bc034bfe7dn@googlegroups.com>
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <faccf8f4-7c3f-4c3c-9c69-8826c4c0fca0n@googlegroups.com>
Subject: Re: Remote Testing
From: markussabin@gmail.com (Markus Sabin)
Injection-Date: Fri, 08 Oct 2021 06:24:54 +0000
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Lines: 52
 by: Markus Sabin - Fri, 8 Oct 2021 06:24 UTC

I understand your question such that this is to prepare a purchasing decision. The modality is located at the manufacturer/distributor and you want to know if it plays nicely with the equipment in a particular hospital. Correct?

Obviously this is much like connecting it locally, so the question is how to do the connection on the TCP/IP-level since the systems reside in different networks.

Typical approaches are
a) set up a VPN
b) set up a port forwarding

The major difference is that with VPN, the device is connected to the entire hospital network as if it was a part of that. So cybersecurity measures are a bit more difficult to define and to put into practice.

Hence - if possible - I would advise towards the port forwarding approach. This means, you will set up port forwarding rules in the hospital's firewall, e.g.
<external IP of the hospital>:<port 1> forwards to <internal IP of the PACS server>:<DICOM Port>
<external IP of the hospital>:<port 2> forwards to <internal IP of the Worklist server>:<DICOM Port>

So the hospital will open only these dedicated ports to the outside world, and through these ports, only dedicated ports on dedicated machines can be reached - the external modality is not part of the hospital's network. Also it is possible to limit the incoming associations to particular IP addresses (i.e. the external IP address of the manufacturer's network), so that not any system but only systems from the manufacturer's network can connect to them. This is still not bullet-proof but I would say this is a decent level of security,.

The modality on the manufacturer's site will then connect to the PACS/Worklist to the forwared ports, e.g. <external IP of the hospital>:<port 1> to reach the PACS.

This is enough to test worklist, storage and MPPS. When it comes to associations initiated from the PACS (e.g. asynchronous Storage Commitment confirmation, Transferring images to the modality, e.g. in the context of Query/Retrieve), a similar configuration needs to be done in the manufacturer's firewall.

HTH

Markus

billl...@gmail.com schrieb am Donnerstag, 7. Oktober 2021 um 20:14:37 UTC+2:
> We have many hospitals around the country. Can someone make a suggestion on how I can remotely test a modality at the hospital with sending images to a PACS or getting patients thru the worklist at the modality.

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor