Tunnel Forwarder configuration settings

A Tunnel Forwarder can take the following configuration settings.
Enter the following settings to configure your Tunnel Forwarder:
Field
Description
Tunnel Forwarder Settings
Tunnel Name
Enter a name for the tunnel forwarder. The name must not include any spaces or special characters (such as *, /, or?). The only characters that are allowed in the name are numbers, letters, dashes (-), and underscore (_) characters.
Local IP
Enter the IP address (in IPV4 format) that the tunnel forwarder is listening to, for example, 192.168.142.100.
UDP Port
Enter the port number to which the tunnel forwarder is listening. The default port number for a RADIUS server is 1812. If you have other processes (such as IAS on Windows or a RADIUS server) running on port 1812, you must change the UDP port default or you must shut down the other server.
Logging Level
Select how much debugging and auditing information that you want the Validation server logs to display:
  • Debug: The log captures general details, and stack traces of all exception events.
  • Info: The log captures general details that are needed to track how the server is functioning. The Logging component accepts and logs any other component’s debug messages.
  • Warn: The log captures details of potentially harmful events such as rejected transactions and exception events that affect the server.
  • Error: The log captures details of events that hinder the server or transaction, but which may still allow the server to function (except events that affect the server).
Log Rotation Interval
Select the frequency at which you want to create a log file.
Number of files to keep
From the drop-down list, select the number of old log files that must be stored in the Validation server.
Enable SSL
Select whether to enable a Secure Socket Layer (SSL) connection between this tunnel forwarder and the tunnel receiver to which it is sending data. If you select Yes, you must select an SSL certificate when configuring the tunnel receiver.
Trusted CA Cert Store
If you enable SSL and the Certificate Authority (CA) for your tunnel receiver SSL certificate is not a public CA, enter the path name to the certificate store that contains the root CA certificate for your tunnel receiver. Optionally, you can import the CA to your Trusted CA Store.
Remote Tunnel Receiver Settings
Host
Enter the IP address (in IPv4 format) or the fully qualified domain name of the tunnel receiver machine.
Port
Enter the port number used by the tunnel receiver.
Connection Timeout
Set the amount of time (in milliseconds) you want to keep trying to connect to the tunnel receiver for each connection.
Proxy Web Server
If you are forwarding data through a proxy server before it reaches the tunnel receiver, select
Yes
for Tunnel through a proxy web server, and set the following parameters:
  • Proxy Host. The name of the proxy server.
  • Proxy Port. The port number used by the proxy server.
VIP Enterprise Gateway only supports proxy servers using Anonymous or Basic Authentication. If your proxy server uses Basic Authentication, then enter:
  • User Name. The user name used to connect to the proxy server.
  • Password. The password used to connect to the proxy server.