Highlighted
Absent Member.
Absent Member.
813 views

Need a trick to make SSL work

We have people using WebAccess often on laptop devices. When laptops are outside the local subnet access is fine since the DNS servers on internet take users to proper SSL certificate access point. When laptops are in the home office and inside the local network, error messages block WebAccess when accessing via IP address. Changing the HOST file solves the inside the network problem, but when out in the world offsite, it screws up DNS sending the user to the right place.... Early versions of GW didn't force SSL and unsecured IP address connections worked fine. GW18 seems to insist on SSL for all connections. Probably a good thing, but what is the work around?
Labels (1)
0 Likes
4 Replies
Highlighted
Knowledge Partner
Knowledge Partner

On Mon, 14 Jan 2019 15:04:02 GMT, dholub
<dholub@no-mx.forums.microfocus.com> wrote:

>
>We have people using WebAccess often on laptop devices. When laptops are
>outside the local subnet access is fine since the DNS servers on
>internet take users to proper SSL certificate access point. When
>laptops are in the home office and inside the local network, error
>messages block WebAccess when accessing via IP address. Changing the
>HOST file solves the inside the network problem, but when out in the
>world offsite, it screws up DNS sending the user to the right place....
>Early versions of GW didn't force SSL and unsecured IP address
>connections worked fine. GW18 seems to insist on SSL for all
>connections. Probably a good thing, but what is the work around?


Why not have your internal DNS server hand out the internal IP? That
is what I do here. Then regardless of whether users are external or
internal, the name always resolves to the correct IP and I have no
certificate issues.

--
Ken
Knowledge Partner

Create and vote for enhancements!
https://www.microfocus.com/products/enhancement-request.html
--
Ken
Knowledge Partner

Create and vote for enhancements in the Idea Exchange forums!
Don't forget to Like helpful posts and mark Solutions!
0 Likes
Highlighted
Knowledge Partner
Knowledge Partner

dholub wrote:

> When
> laptops are in the home office and inside the local network, error
> messages block WebAccess when accessing via IP address. Changing the
> HOST file solves the inside the network problem, but when out in the
> world offsite, it screws up DNS sending the user to the right
> place....


Hi dholub,

There are a couple of things you can look into. As Ken mentioned, an
internal DNS is probably the easiest solution but also talk to the guys
who manage the network. They may be able to work some magic so that
resources can be accessed from the LAN via their public IP addresses.

--
Kevin Boyle - Knowledge Partner
If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below this post.
Thank you.
_____
Kevin Boyle - Knowledge Partner - Calgary, Alberta, Canada
Who are the Knowledge Partners?
If you appreciate my comments, please click the Like button.
If I have resolved your issue, please click the Accept as Solution button.
0 Likes
Highlighted
Absent Member.
Absent Member.

Okay. We set the internal DNS to give out the correct internal IP address and ... it WORKS!!! Thanks. Should have thought of that, but was drawing a blank.
0 Likes
Highlighted
Knowledge Partner
Knowledge Partner

On Mon, 14 Jan 2019 20:14:02 GMT, holub457
<holub457@no-mx.forums.microfocus.com> wrote:

>
>Okay. We set the internal DNS to give out the correct internal IP
>address and ... it WORKS!!! Thanks. Should have thought of that, but
>was drawing a blank.


Glad its working for you now!

--
Ken
Knowledge Partner

Create and vote for enhancements!
https://www.microfocus.com/products/enhancement-request.html
--
Ken
Knowledge Partner

Create and vote for enhancements in the Idea Exchange forums!
Don't forget to Like helpful posts and mark Solutions!
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.