0

I see from this article that there is a gateway tunnel created between client side and server side.

Would it be safe to expose the secure gateway client to all?

bharz629
  • 161
  • 2
  • 4
  • 10

1 Answers1

1

The Secure Gateway Client establishes the connection to the Secure Gateway Server over HTTPS using TLSv1.2. Once this connection is established, the SG Server will set up the listeners for your gateway's destinations on the associated cloud host:port combinations (details dependent on the configuration of each destination). Connecting to these listeners is the only way to pass information from the public network via Secure Gateway to the private network where your SG Client is located.

Galen Keene
  • 303
  • 1
  • 10
  • Thanks Galen. Whenever a cloud app wants to send any information to a system residing in private network,it will address the data to the cloud host and port. I'm assuming the listeners are residing on the SG server for the associated cloud host and port. Is that correct? How does the listener push the information to the SG client? Is it a push or a pull model? – bharz629 Sep 12 '17 at 10:17
  • Unable to edit my comment - Where do these listeners reside and how is data getting pushed to the SG client? – bharz629 Sep 12 '17 at 10:32
  • The listeners are on the SG Servers, that is correct. The persistent connection allows bi-directional data flow between the SG Server and the SG Client -- this is the route used to send requests to on-prem and receive responses from on-prem. – Galen Keene Sep 12 '17 at 13:57