Configure the Secure Private Tunnel

Deployment Guide › Secure Private Tunnel › Configure the Secure Private Tunnel

Configure the Secure Private Tunnel

To configure the secure private tunnel, you need to edit the startup.properties file on both the routing gateway and on its parent server. Find this file in the \system subfolder of the CA DLP installation folder. Note the following:

We recommend you use static IP addresses when assigning public addresses to the routing gateway and its parent server. This is because the tunnel is not resilient to changes to public IP addresses while the service is running. If an IP address is changed, you must restart the CA DLP infrastructure service, wgninfra.exe, on both the routing gateway and its parent server.
Both the routing gateway and its parent server must have a mapped public address in the relevant Network Address Translator.
The firewalls must both be configured to only accept connections through the port assigned to the tunnel.
Each routing gateway needs to be configured to send data through the tunnel to a specific parent server, so that the data is not blocked by the firewall.

Note: You must restart the CA DLP infrastructure service, wgninfra.exe, before changes to startup.properties can take effect.

More information:

Example startup.properties Files

Email CA Technologies about this topic