Author |
Message
|
paustin_ours |
Posted: Thu Feb 25, 2016 9:21 am Post subject: datapower dmz |
|
|
Yatiri
Joined: 19 May 2004 Posts: 667 Location: columbus,oh
|
we sftp files from our broker server to external clients. This sftp call first goes to datapower box where DP does LDAP look up and finds the actual destination ip/user/password and then that is used for the sftp. The way i understand is that DP acts as a dmz proxy. I am not a datapower person.
we are trying to use connect direct to transfer files now but we still want to go via datapower for the ldap look ups. I hear for sftp datapower maybe using a ftp FSH but there isn't a handler for connect direct.
Any thoughts on how to make Connect Direct work with DP in such a fashion? |
|
Back to top |
|
 |
fjb_saper |
Posted: Thu Feb 25, 2016 1:54 pm Post subject: Re: datapower dmz |
|
|
 Grand High Poobah
Joined: 18 Nov 2003 Posts: 20756 Location: LI,NY
|
paustin_ours wrote: |
we sftp files from our broker server to external clients. This sftp call first goes to datapower box where DP does LDAP look up and finds the actual destination ip/user/password and then that is used for the sftp. The way i understand is that DP acts as a dmz proxy. I am not a datapower person.
we are trying to use connect direct to transfer files now but we still want to go via datapower for the ldap look ups. I hear for sftp datapower maybe using a ftp FSH but there isn't a handler for connect direct.
Any thoughts on how to make Connect Direct work with DP in such a fashion? |
Connect Direct has its own proxies for user / password and they are stored in its network connection setup. Just use a pass-through for CD in your DP Appliance.  _________________ MQ & Broker admin |
|
Back to top |
|
 |
paustin_ours |
Posted: Thu Feb 25, 2016 3:51 pm Post subject: |
|
|
Yatiri
Joined: 19 May 2004 Posts: 667 Location: columbus,oh
|
are you referring to Sterling security Proxy tool? if so looks like that is another piece of software that we need to buy extra. |
|
Back to top |
|
 |
fjb_saper |
Posted: Fri Feb 26, 2016 5:11 am Post subject: |
|
|
 Grand High Poobah
Joined: 18 Nov 2003 Posts: 20756 Location: LI,NY
|
paustin_ours wrote: |
are you referring to Sterling security Proxy tool? if so looks like that is another piece of software that we need to buy extra. |
No I was referring to the CD connection setup in its network view...  _________________ MQ & Broker admin |
|
Back to top |
|
 |
paustin_ours |
Posted: Fri Feb 26, 2016 5:41 am Post subject: |
|
|
Yatiri
Joined: 19 May 2004 Posts: 667 Location: columbus,oh
|
ok thanks. i will look. Another quick question if i may. We are planning on using FASP that comes with CD. we hear that FASP uses UDP instead of TCP. Can I still go through DP as passthru if the connection is via UDP? Any thoughts? |
|
Back to top |
|
 |
fjb_saper |
Posted: Fri Feb 26, 2016 6:17 am Post subject: |
|
|
 Grand High Poobah
Joined: 18 Nov 2003 Posts: 20756 Location: LI,NY
|
You just have to make sure you allow UDP through the port...  _________________ MQ & Broker admin |
|
Back to top |
|
 |
paustin_ours |
Posted: Fri Feb 26, 2016 6:45 am Post subject: |
|
|
Yatiri
Joined: 19 May 2004 Posts: 667 Location: columbus,oh
|
|
Back to top |
|
 |
|