Newbie question about Uniface Anywhere

Author: tomas.hogvag@abilita.fi (thogvag)

Hello, We are currently testing Uniface Anywhere. I have a question regarding network connectivity needed for web deployment. It is stated in the manual that the Uniface Anywhere server listens on TCP port 491 by default. In one use case we have a client that would need to run our software from a mobile internet connection (3G) that has a dynamic ip-adress. (the clients ip adress changes frequently) Is it sufficient for the client to have access to the webserver (port 80) to run the application or does the client need access to the Anywhere server on port 491. My thinking is that we would have a dedicated Anywhere server in the internal net. And a web server (IIS) in DMZ or outside the firewall. And then open port 491 between web server and Anywhere server. Is this scenario possible? Ie. the only thing the client would need is an internet connection. best regards, Tomas

3 Comments

  1. Dear Tomas, indeed the Uniface Anywhere client talks with the Host over TCP/SSL on port 491. This port number can be changed if required on both the Host (through the use of the Cluster Manager - Tools - Host Options) and added to the command line which starts the UA-Client.  Port 80, is commonly used for http services that serves the web pages and can distribute the Uniface Anywhere client to the client machine. As soon as the client is started, the UA client will communicate to the host through the configured port in the Cluster Manager and will not make use of port 80 any more. If you want to make use of a DMZ, the used proxy servers will have to allow communications on port 491 to go through from the internet to the internally placed Uniface Anywhere Host Server. A configuration possibility would be to set up in the DMZ a Uniface Anywhere Host (you could install it on the web server(iis) if supported) and configure it as a Relay server. Place in your internal network a dedicated Uniface Anywhere Host (with the application to be published) and configure it to use the Relay Server. Clients from the Internet can now connect to the the Relay server in the DMZ on port 491. The Relay server will maintain the communication to the Dedicated server(s) on the internal network. Regards, Nico


    Author: Nico Peereboom (nico.peereboom@uniface.com)
  2. Thanks for the clarification, I guess what I had in mind was that the web component of  Anywhere would allow some kind of "http tunneling" of the traffic to the Anywhere host. I will read up about the relay server in the documentation. Would you need two licenses for Uniface Anywhere host in a case like this? Maybe a simpler scenario (if the application is to be run only from internet) would be to install the Anywhere host directly on the web server in DMZ. best regards Tomas


    Author: thogvag (tomas.hogvag@abilita.fi)
  3. Hi Tomas, Uniface Anywhere does allow Proxy Tunneling via the HTTP CONNECT Method. In the administrator guide on page 98, you can find this topic on how to configure it. For every multiple server Host environment you can use just one license server and point all the Uniface Anywhere Hosts to this server. To achieve this you will have to change the LM_LICENSE_FILE environment variable on the server, that does not contain the valid license file, to point to 27000@license-servername In this way you will only require one license file for all servers that you have running. For more explanations on how to configure license servers, see chapter "Redundant License Servers" starting on page 15 of the Administrator guide. Regards, Nico


    Author: Nico Peereboom (nico.peereboom@uniface.com)