By default, the Capture Socket process accepts connections from a remote machine, assuming it follows the Transport Service Protocol. The Firewall section of TealeafCaptureSocket.cfg
can be used to restrict which remote capture devices are permitted to communicate with the CX server.
This section contains addresses of remote hosts allowed to send data to the Transport Service.
When a connection is first accepted, the sending addresses are verified against the set of addresses specified in the RemoteHosts
setting. Any address not in the list is tracked, disconnected, and logged at the next ReportingInterval
when logging is enabled.
The firewall settings:
Display Name
values are displayed in TMS, which is the recommended method for configuring session agents.Name
values are displayed inTealeafCaptureSocket.cfg
.
Display Name | Name | Description |
---|---|---|
Remote Hosts |
RemoteHosts |
A comma-separated list of IP addresses or DSN-resolvable host names. You can also specify a range of addresses, separated by a hyphen. Any address falling within the specified range is permitted to connect. In the following example, an IP address, a DSN address, and a range of addresses are specified for acceptance: RemoteHosts=1.2.3.4, freebird2, 1.2.3.10-1.2.3.12 |
Reporting Interval |
ReportingInterval |
This setting defines the amount of time in seconds to wait between reporting on rejected connections. Configuring a valid reporting interval prevents inundating the log with reports of rejected connections when a server is attempting to reconnect multiple times. The default value is 900 seconds (15 minutes). |
Report to Event Log |
ReportToEventLog |
When set to true , the rejection reporting is also written to the Tealeaf application event log. The default value is false . |