KBI 311013 New Feature: Remote Trusted Agent With Reversed TCP Connection
Version
Argent Advanced Technology 3.1A-1407-A and later
Date
Wednesday, 23 July 2014
Summary
Customer installs Remote Trusted Agent to monitor remote network that either has slow link or blocked by firewall
By default, Remote Trusted Agent initiates TCP connection to exchange information with the Main Engine
This default architecture has the minimum configuration on network, because customer only needs to open up a single port firewall at Main Engine to allow all the Remote Trusted Agents to connect
But this network configuration is not always available
For example, some organization only allows connection being initiated by server at main network to connect to any server at DMZ
In this case, the default installation of Remote Trusted Agent will not work
Argent AT 3.1A-1407-A implements Remote Trusted Agent with reversed TCP connection
In such architecture, it is the Main Engine that initiates the TCP connection and connects to the Remote Trusted Agent
Customer runs Argent AT setup to install such a Remote Trusted Agent
The only difference is to make sure the option ‘Connect From Main Engine To Remote Component‘ is checked
After the Remote Trusted Agent with reversed TCP connection is installed, Argent AT Main Engine won’t discover this Trusted Agent automatically as usual
This is because the installed Trusted Agent does not initiate the TCP connection; it simply sits there waiting for Main Engine to contact instead
Customer needs one more extra step to connect to such a Remote Trusted Agent
Customer will be prompted for the Remote Trusted Agent to connect
After successful connection, the Trusted Agent can be used as usual
Technical Background
N/A
Resolution
Upgrade to Argent AT 3.1A-1407-A or later