Configuring an MEIG AS2 proxy handler

How to configure a Multi-Enterprise Integration Gateway (MEIG) AS2 proxy handler. An MEIG AS2 proxy handler can receive inbound AS2 messages and outbound asynchronous MDN, retrieve the exchange profile from the MEIG server, and generate and send visibility events.

Before you begin

Ensure that the DataPower® integration interface is enabled on MEIG. For more information, see the MEIG documentation.

About this task

To configure a MEIG AS2 proxy handler, define the following settings.
  • The client connection to the handler that allows HTTP POST requests. To secure connections from clients, configure a TLS server profile or a TLS SNI server profile.
  • The server connections to the MEIG server. To secure connections to the server, configure a TLS client profile.

Procedure

  1. In the search field, enter as2.
  2. From the search results, click MEIG AS2 proxy handler.
  3. Click Add.
  4. Define the basic properties - Name, administrative state, and comments.
  5. Define the connection from clients to the handler.
    1. In the Local IP address field, enter the IP address or host alias that the handler listens.
      To use a local host alias, click Select alias. A host alias resolves an alias to a static IP address. Aliasing can help when you move configurations among DataPower instances.
    2. In the Port field, enter the local port that the service listens.
    3. From the HTTP version to client list, select the version for clients.
    4. From the Allowed methods and versions list, select the methods and versions to allow in client requests.
    5. Set Negotiate persistent connections to control the negotiation of persistent connections.
    6. In the Max persistent reuse field, enter the maximum number of times a persistent connection is reused.
    7. Set Enable compression to control the negotiation of GZIP compression.
    8. In the Max URL length field, enter the length of the longest incoming URL to accept.
      The length includes any query string or fragment identifier.
    9. In the Max total header length field, enter the maximum aggregate size of incoming HTTP headers.
    10. In the Max number of headers field, enter the maximum number of headers to allow in requests.
    11. In Max header name length field, enter the maximum length of the name part of a header. Each HTTP header is expressed as a name-value pair.
    12. In Maxi header value length field, enter the maximum length of the value part of a header. Each HTTP header is expressed as a name-value pair.
    13. From the Access control list list, select the ACL to apply.
    14. From the Credential character set list, select the character encoding of the original basic authentication values.
    15. From the TLS server type list, select the type of TLS server profile to secure connections.
    16. Select the TLS server profile from either the TLS server profile or TLS SNI server profile list.

Define the connection to the MEIG server.

  1. Define the basic settings.
    1. Click the Multi-Enterprise Integration Gateway server tab.
    2. Optional: Set Enable pass-through to control whether to pass the original AS2 message to the MEIG server.

      When enabled, the handler passes the original message along with its HTTP headers for processing. In this case, the request type is usually Non-XML or Pass through.

      When not enabled, the handler passes the message body of the decrypted data where the signature is removed for processing. In this case, you must configure the request type according to the content type of the message body.

    3. From the XML manager list, select an existing XML manager.
  2. Define how to retrieve the exchange profile from the MEIG server.
    1. In the Host field, enter the IP address, hostname, host alias, or load balancer group name that the MEIG server listens.
    2. In the Port field, enter the listening port of the MEIG server.
    3. From the TLS client type list, select the type of TLS profile type to secure connections to the server.
      Note: Define this setting only when the TLS client profile is not defined in the user agent for the multiprotocol gateway.
    4. From the TLS client profile list, select the TLS profile to secure connections to the server.
    5. Optional: In the Connection timeout field, enter the time to wait to establish a connection to the MEIG server.
  3. Define the visibility event settings.
    1. Set Send visibility event to control whether to send the visibility events to the visibility event endpoint.
    2. In the Visibility event endpoint field, enter the URL of the visibility event endpoint.
    3. Set Enable HMAC authentication to control whether to use HMAC to secure all visibility events that are sent to the visibility event endpoint.
    4. From the HMAC passphrase alias list, select the password alias.
  4. Click Apply to save changes to the running configuration.
  5. Click Save to save changes to the persisted configuration.

What to do next

Associate the MEIG AS2 proxy handler with the DataPower service.