Addition of server to an existing junction
Operation: Adds an additional server to an existing junction point.
Syntax:
add -h host-name options junction-point
- –h host-name
- The DNS host name or IP address of the target back-end server to add. This parameter is required.
- options
- See Table 1.
- junction-point
- The name of the junction point. This parameter is required.
See Standard WebSEAL junction configuration.
Junction type | Parameter | Description |
---|---|---|
Standard junction types |
–a address |
Specifies the local IP address that WebSEAL uses when communicating with the target back-end server. If this option is not provided, WebSEAL uses the default address as determined by the operating system. If you supply an address for a particular junction, WebSEAL binds to this local address for all communication with the junctioned server. |
Standard junction types |
–i |
WebSEAL server treats URLs as case insensitive. |
Standard junction types |
–q url |
Relative path for query_contents script. By default, WebSEAL looks for query_contents in /cgi_bin/. If this directory is different or the query_contents file name is different, use this option to indicate to WebSEAL the new URL to the file. Required for back-end Windows servers. See Installing and configuring query_contents on Windows-based Web servers. |
Standard junction types |
–w |
Windows filesystem support. |
TCP and SSL junction types |
–p port |
TCP port of the back-end third-party server. Default is 80 for TCP junctions; 443 for SSL junctions. See Creating TCP type standard junctions and Creating SSL type standard junctions. |
Mutual junction types |
–p HTTP-port |
HTTP port of the back-end third-party server. |
Mutual junction types |
–P HTTPS-port |
HTTPS port of the back-end third-party server. |
Stateful junctions See Stateful junctions. |
–u UUID |
Specifies the UUID of a back-end server connected to WebSEAL via a stateful junction (–s). |
Mutual authentication over SSL |
–D "DN" |
Specifies distinguished name of back-end server certificate. This value, matched with an actual certificate DN, enhances authentication. |
Proxy junction (requires –t tcpproxy or –t sslproxy) |
–H host-name |
DNS host name or IP address of the proxy server. |
Proxy junction (requires –t tcpproxy or –t sslproxy) |
–P port |
The TCP port of the proxy server. |
Virtual hosts |
–v virt-host-name |
Virtual host name represented on the back-end server. This option supports a virtual host setup on the back-end server. For mutual junctions this value corresponds to the virtual host which is used for HTTP requests. You use –V when the back-end junction server expects a host name header because you are junctioning to one virtual instance of that server. The default HTTP header request from the browser does not know that the back-end server has multiple names and multiple virtual servers. You must configure WebSEAL to supply that extra header information in requests destined for a back-end server set up as a virtual host. |
Virtual hosts |
–V virt-host-name |
Virtual host name represented on the back-end server. This option supports a virtual host setup on the back-end server. The value corresponds to the virtual host which is used for HTTPS requests. Only used for mutual junctions. You use –V when the back-end junction server expects a host name header because you are junctioning to one virtual instance of that server. The default HTTPS header request from the browser does not know that the back-end server has multiple names and multiple virtual servers. You must configure WebSEAL to supply that extra header information in requests destined for a back-end server set up as a virtual host. |