Configuring exchanges

In this section you create and configure the following Transfer CFT objects to enable Transfer CFT exchanges that use Secure Relay:

  • Network object CFTNET
  • Protocol object CFTPROT
  • Partner object CFTPART and CFTTCP

Creating a CFTNET object

  1. Create a CFTNET object where:
    • TYPE= TCP
    • protocol value = SR
  2. Define the mandatory parameters RECALLHOST and SSLTERM.
    • RECALLHOST: The host address on which the Master Agent calls Transfer CFT when Secure Relay receives an incoming call. If Transfer CFT and the Master Agent run of the same host, prefer the loopback network interface (for example, 127.0.0.1) instead of the public network interface. When using Secure Relay, the HOST parameter designates the network interface that is used on the Router Agent side.
    • SSLTERM: Set this Boolean to YES to enable SSL termination.
  3. If there is existing CFTNET object(s), the class parameter must be different.

Example

CFTNET ID = NETSR,

TYPE = TCP,

CALL = INOUT,

CLASS = 1,

HOST = <network_interface_used_by_Router_Agent>,

PROTOCOL = SR,

RECALLHOST = 127.0.0.1, /*network_interface_used_by_Transfer_CFT*/

SSLTERM = YES

Working in the Copilot UI

If you are working in the Copilot UI, the CFTNET dialog box offers the Secure Relay parameter option.

  • Check the box Use Secure Relay to set the CFTNET PROTOCOL parameter to the value SR.
  • Complete the Recall host field with the host address used by the Master Agent to Transfer CFT when receiving an incoming call.

Creating a CFTPROT object

This section describes the CFTPROT object, and how various parameters are related to enabling secure data transmission using Secure Relay.

  • CFTPROT is related to the CFTNET object through the NET parameter.
  • The SAP parameter is the listening port that is used on the RA side (using the CFTNET HOST parameter as the network interface).

Example

This example uses a CFTNET object called NETSR.

CFTPROT id = PESITANY,

net = NETSR,

sap = 1761,

prof = ANY

Creating CFTPART and CFTTCP objects

When a partner object refers to a CFTPROT object and a CFTNET object that use Secure Relay, it uses Secure Relay for both incoming and outgoing connections.

So to complete the configuration, create a CFTPART and a CFTTCP. In this way, the CFTPART refers to the CFTPROT object, and that in turn refers to a CFTNET, which points to Secure Relay.

Example

This is an example of the CFTPART and CFTTCP object configuration, using PESITANY.

CFTPART id = PARIS,

 prot = PESITANY,

 sap = <remote_partner_sap>,

 nspart = NPARIS,

  nrpart = NPHOENIX,

  mode = replace

 

CFTTCP id = PARIS,

 class = 1, /* same class as the one used in the CFTNET */

 host = <remote_partner_host_address>,

 mode = replace

Working in the Copilot UI

If you are using the Copilot interface, as you can see below there is a partner using PESITANY and NETSR. The CLASS parameter in CFTTCP must be the same as in the CFTNET object (the value 1 in the previous example).

Related Links