Layer 7 API Management

Expand all | Collapse all

Portal + Required Resolvable Hostnames Question

Jump to Best Answer
  • 1.  Portal + Required Resolvable Hostnames Question

    Posted 02-10-2020 10:09 PM
    Hello,

    We are installing portal 4.3.2.  I understand that there are several required resolvable hostnames that the portal must expose such as: apim-ssg, enroll, analytics, etc..  Our organization uses an F5 load balancer where we create VIPs that map to the host(s) and port.  Is this acceptable for these required resolvable hostnames?  In this case, since there are no port differences, everything would come in on port 80.  I suspect that the portal is internally mapping behavior based on the incoming prefix?!  If so, would the F5 interfere with this?

    Any guidance here is appreciated.

    Thanks!

    Alejandro



  • 2.  RE: Portal + Required Resolvable Hostnames Question
    Best Answer

    Posted 02-11-2020 12:05 PM
    Hello Alejandro,
    I have been isung some ways to reroute to the portal, and as you mentioned, the main thing is that the Portal sees that the hostname in the header has a particular format, apim-ssg.l7tech.com, tenant1.l7tech.com... etc...
    the fact that it goesthrough a F5 or any other ways, is not important.

    beware of the ports though: they are either 443 (https) or 9443 (also https) depending of what you need to do (in general it is 443 though) and what form factor (swarm or helm) you use

    I hope this helps

    ------------------------------
    Maurizio Garzelli
    APIIDA
    APIIDA Principal Consultant
    https://apiida.com
    ------------------------------



  • 3.  RE: Portal + Required Resolvable Hostnames Question

    Posted 02-12-2020 08:53 PM

    Hi Maurizio,

    Thanks.  This helps - especially the port guidance.  The docs do not specify what ports got along with the hostnames.  I can only guess that all use 443 (or 8443?!) except for sso.* which appears to use 9443?  If there are docs that clearly spell this out, that would be appreciated.

    As for form factor - swarm.

    Thanks,

    Alejandro 




  • 4.  RE: Portal + Required Resolvable Hostnames Question

    Posted 02-16-2020 12:29 PM
    Hi Alejandro,
    as a matter of fact 9443 and 443 need to be open: 443 is for the normal operation of the Portal, but 9443 is required for enrollment, stats, etc...
    it is all specified here:
    https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-api-management/api-developer-portal/4-4/install-configure-and-upgrade/install-portal-on-docker-swarm/scale-ca-api-portal/high-availability.html

    I hope it helps

    Maurizio

    ------------------------------
    Maurizio Garzelli
    APIIDA
    APIIDA Principal Consultant
    https://apiida.com
    ------------------------------