Hi
I have a requirement wherein I need webMethods Active Transfer ( For all File Transfers over HTTP,HTTPS,FTP,FTPS etc.) as well Enterprise Gateway (To secure B2B Integration Servers by putting an additional layer in DMZ for all incoming HTTP/HTTPS requests).Enterprise gateway as we know is an integration Server itself installed in DMZ zone which communicates with internal IS and same is the case with Active Transfer Gateway
Does anyone know if Active Transfer Gateway and Enterprise Gateway can be installed on same integration server in DMZ zone and if there are any issues in doing that ?
One difference that I am aware is the communication mechanism wherein one MFT Server communicates with only one MFT Gateway Server while one Internal IS can communicate with multiple Enterprise Gateway Servers.
Yes, ActiveTransfer Gateway runs on Enterprise Gateway and connects to ActiveTransfer server in the internal environment. Since the 9.6 version (released on April 15, 2014), ActiveTransfer Gateway can connect to multiple instances of ActiveTransfer servers.
Thanks Venkat
Yes I am aware of 9.6 capabilities for active transfer fail over. Are we saying that enterprise gateway is a prerequisite for active transfer gateway.
Do we need only license for active transfer gateway and can use it as enterprise gateway as well ?
Yes, Enterprise Gateway is a prerequisite for ActiveTransfer Gateway. ActiveTransfer gateway runs on Enterprise Gateway. ON the same note, ActiveTransfer server runs on Integration server.
But as far as SAG documentation and installation guidelines state both enterprise gateway and active transfer gateway run on integration servers which are of limited functionality.It does not clearly state anywhere that you need to have enterprise gateway explicitly before setting up active transfer gateway.
Yes I know WmMFT package runs on IS for Active Transfer Server.
Are you also aware about licensing aspect for it i.e. are licenses separate for them or if I have license for active transfer i can use it as enterprise gateway as well ?
Nothing can stop you to install Gateway and Server of MFT on same machine[Never tried but technically possible], but you are putting your MFT server open to hackers. [It is not recommended to process/store data in DMZ].
Gateway server caters the requirement of Active Transfer as well. No separate installation required.
License is a tricky stuff with SAG. Reach out to Sales guys. My wild guess is, need to buy gateway server + active transfer license.
“enterprise gateway and active transfer gateway run on integration servers which are of limited functionality.” means gateway server is IS with limited capability.
Hi Rankesh
I am not trying to install MFT server on gateway server but trying to setup both active transfer gateway as well as enterprise gateway on same machine in DMZ zone.
MFT server would be installed on internal integration servers as per security guidelines and to install WmMFT you need a full fledged integration server and not a partial integration server like enterprise gateway.
Overall discussion had been on whether both gateways can be installed on same machine or not and is enterprise gateway a prerequisite for active transfer gateway or not. As per SAG documentation its not as both are kind of partial integration servers with reverse proxy capabilities where one is for all your HTTP/HTTPS needs while other is for FTP/FTPS/SFTP specific needs.
Till 9.5 Active Transfer Gateway could connect to only 1 Active Transfer while in 9.6 one to many connections are possible even though at run time one active transfer gateway is connected to only one active transfer server .In case a active transfer server goes down it connects to next active transfer server and thus provides fail over capabilities for an ongoing transaction.
Enterprise gateway since 6.5 with its name as RI at that time can connect to multiple IS at run time.
Yes this was clarified by Ramesh but my point was that its not clearly stated anywhere in installation documentation as well as Active Transfer documentation.
Also both would communicate on different set of ports as both of them work a bit differently in terms of communication between Gateway and Server even though underlying protocol is HTTP/HTTPS .