| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| MQ Connection via Proxy |
« View previous topic :: View next topic » |
| Author |
Message
|
| jeeth_m |
 Posted: Tue Jun 20, 2006 3:11 am Post subject: MQ Connection via Proxy |
 |
|
Voyager
Joined: 21 Jan 2002
Posts: 93
|
Hi ,
We connecting to an external vendor who doesnt want to expose his actual IP to the world. So he has a proxy in between. We are having a cluster setup.
In the reciever channel he has provided the proxy ip address.
the cluster sender channel picked that IP address and is trying to connect to external vendor Qmanager.
in our network changes are made to connect to that proxy server.
as of now channels are retrying.
Is this kind of config possible. ?
Thanks
Jeeth |
|
| Back to top |
|
 |
| jefflowrey |
| Posted: Tue Jun 20, 2006 3:33 am Post subject: |
|
|
Grand Poobah
Joined: 16 Oct 2002
Posts: 19981
|
It depends on how he set up his queue manager.
If he set a connection name on his CLUSTER RECEIVERS that is the proxy address, then it should work from your side - but it might not work from other parts of his network.
If he set a connection name on his clusrcvrs that is the private address, then it WON'T work from your side, but should work from his.
_________________
I am *not* the model of the modern major general. |
|
| Back to top |
|
|
| jeeth_m |
| Posted: Tue Jun 20, 2006 4:22 am Post subject: |
|
|
Voyager
Joined: 21 Jan 2002
Posts: 93
|
Thanks for the Reply.
| Quote: |
If he set a connection name on his CLUSTER RECEIVERS that is the proxy address,
then it should work from your side - but it might not work from other parts of his network. |
The cluster reciever has the proxy ip address. i again confirmed with him.
He says its NAT in the firewall. [/quote] |
|
| Back to top |
|
|
| jefflowrey |
| Posted: Tue Jun 20, 2006 4:34 am Post subject: |
|
|
Grand Poobah
Joined: 16 Oct 2002
Posts: 19981
|
When the channel goes into retry, it should log messages on your side that will help you figure out why. These will go into the queue manager error log (<mq_install>/qmgrs/<qmgr_name>/errors/AMQERR01.log).
The other thing to remember is that an MQ cluster will always attempt to create a direct connection between queue managers that need to send messages.
So, for example, if your QMGRs are named like 1,2,3,4 and his are named A,B,C,D.
Now if your qmgr 2 is your FR and his B is his FR. He has made B to be the proxy qmgr, and you've created channels from 1,2,3,4 to B using the proxy address. Then you have a program connected on your QMGR 4 that needs to send to his Qmgr D.
NOW, Qmgr 4 will attempt to automatically define a channel directly from 4 to D. But if D's cluster receiver (which points to B) is NOT using a proxy address, then you will get the internal information on his side. And Qmgr 4 will attempt to open a channel to that address, which doesn't work from your side.
_________________
I am *not* the model of the modern major general. |
|
| Back to top |
|
|
| fjb_saper |
| Posted: Tue Jun 20, 2006 2:19 pm Post subject: |
|
|
Grand High Poobah
Joined: 18 Nov 2003
Posts: 20756
Location: LI,NY
|
| jeeth_m wrote: |
Thanks for the Reply.
| Quote: |
If he set a connection name on his CLUSTER RECEIVERS that is the proxy address,
then it should work from your side - but it might not work from other parts of his network. |
The cluster reciever has the proxy ip address. i again confirmed with him.
He says its NAT in the firewall. |
[/quote]
Well we solved the problem this way.
- there is no IP address on any of the cluster receiver channels
- all cluster receiver channels have a dns name
- if it is not possible to set up the dns to point to the right address (including the necessary indirections for nat traversal) the dns resolution is made via the /etc/hosts table.
- this means that from a hostx will have 10.150.35.6 and from b this address (hostx) will be 172.180.35.82 (ip # are ficticious but you get the point)
Make sure the MQ ports are opened for bidirectional traffic on the firewall.
Enjoy 
_________________
MQ & Broker admin |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
