Tarantella Administration Guide > Security > Using Tarantella with the HTTPS port through a firewall

Using Tarantella with the HTTPS port through a firewall

Problem

Your firewall only allows web access from the Internet via port 443. You need Tarantella to use this port as well.

Solution

Reconfigure Tarantella to listen on port 443. Then use the Firewall Forwarding facility to allow Tarantella to forward any traffic not related to Tarantella to your web server.

Case study

Indigo Insurance, has their firewall configured to only allow HTTPS access (on port 443) from the Internet. They do not want to open any additional ports so their array of Tarantella servers must use the same port as well.

Solution

  1. In Array Manager, select Array and click the Properties button.
  2. Change Port Numbers, Encrypted connections from 5307 to 443.
  3. For each Tarantella server in the array, use tarantella config list --array-port-encrypted to check that the change to the port number has taken effect.
  4. Reconfigure each web server in the array to listen on local host port 443: After configuring a web server in the array, restart it.
  5. For each Tarantella server in the array, select Security properties and set Firewall Forwarding URL to https://127.0.0.1:443. (Alternatively, type tarantella config edit --security-firewallurl https://127.0.0.1:443 from a command line.)
  6. Restart each Tarantella server in the array using the tarantella restart command.

Next steps

Related topics
  • Security properties (server-specific)
  • The tarantella security start command
  • The tarantella security stop command