How to configure a Multi-Enterprise Integration Gateway (MEIG) AS2 proxy handler. An MEIG
AS2 proxy handler can receive inbound AS2 messages and outbound asynchronous MDN, retrieve the
exchange profile from the MEIG server, and generate and send visibility events.
Before you begin
Ensure that the DataPower® integration interface is
enabled on MEIG. For more information, see the MEIG documentation.
About this task
To configure a MEIG AS2 proxy handler, define the following settings.
- The client connection to the handler that allows HTTP POST requests. To secure connections from
clients, configure a TLS server profile or a TLS SNI server profile.
- The server connections to the MEIG server. To secure connections to the server, configure a TLS
client profile.
Procedure
- In the search field, enter as2.
- From the search results, click MEIG AS2 proxy
handler.
- Click Add.
- Define the basic properties - Name, administrative state, and
comments.
- Define the connection from clients to the handler.
- In the Local IP address field, enter the
IP address or host alias that the handler listens.
To use a local host alias, click Select
alias. A host alias resolves an alias to a static IP address. Aliasing can help when you
move configurations among DataPower instances.
- In the Port field, enter the local port that
the service listens.
- From the HTTP version to client list, select the version for
clients.
- From the Allowed methods and versions list, select the methods
and versions to allow in client requests.
- Set Negotiate persistent connections to control the negotiation
of persistent connections.
- In the Max persistent reuse field, enter the maximum number of
times a persistent connection is reused.
- Set Enable compression to control the negotiation of GZIP
compression.
- In the Max URL length field, enter the length of the longest
incoming URL to accept.
The length includes any query string or fragment
identifier.
- In the Max total header length field, enter the maximum
aggregate size of incoming HTTP headers.
- In the Max number of headers field, enter the maximum number of
headers to allow in requests.
- In Max header name length field, enter the maximum length of
the name part of a header. Each HTTP header is expressed as a name-value pair.
- In Maxi header value length field, enter the maximum length of
the value part of a header. Each HTTP header is expressed as a name-value pair.
- From the Access control list list, select the ACL to
apply.
- From the Credential character set list, select the character
encoding of the original basic authentication values.
- From the TLS server type list, select the type of TLS server
profile to secure connections.
- Select the TLS server profile from either the TLS server
profile or TLS SNI server profile list.
Define the connection to the MEIG server.
- Define the basic settings.
- Click the Multi-Enterprise Integration Gateway server
tab.
- Optional: Set Enable pass-through to control
whether to pass the original AS2 message to the MEIG server.
When enabled, the handler passes the original message along with its HTTP headers for processing.
In this case, the request type is usually Non-XML or Pass
through.
When not enabled, the handler passes the message body of the decrypted data where the signature
is removed for processing. In this case, you must configure the request type according to the
content type of the message body.
- From the XML manager list, select an existing XML
manager.
- Define how to retrieve the exchange profile from the MEIG server.
- In the Host field, enter the IP address, hostname, host alias,
or load balancer group name that the MEIG server listens.
- In the Port field, enter the listening port of the MEIG
server.
- From the TLS client type list, select the type of TLS profile
type to secure connections to the server.
Note: Define this setting only when the TLS client profile is not defined in the user agent for the
multiprotocol gateway.
- From the TLS client profile list, select the TLS profile to
secure connections to the server.
- Optional: In the Connection timeout field, enter
the time to wait to establish a connection to the MEIG server.
- Define the visibility event settings.
- Set Send visibility event to control whether to send the
visibility events to the visibility event endpoint.
- In the Visibility event endpoint field, enter the URL of the
visibility event endpoint.
- Set Enable HMAC authentication to control whether to use HMAC
to secure all visibility events that are sent to the visibility event endpoint.
- From the HMAC passphrase alias list, select the password
alias.
- Click Apply to save changes to the running
configuration.
- Click Save to save changes to the persisted
configuration.
What to do next
Associate the MEIG AS2 proxy handler with the DataPower service.