Access over the internet and different port numbers

Discussions related to SoftPro Select Server development.

Moderator: Phil Barton

Post Reply
slaven
Posts: 7
Joined: Fri May 11, 2018 5:17 am

Access over the internet and different port numbers

Post by slaven »

We have SoftPro Select server installed on virtual machine in our local network.
Now we need to access the SoftPro server from our staging server (over the internet), but due to security concerns we can't use 8080 port.
Locally we use http://softpro:8080 to access it.
Access from the internet is set up to http://softpro.domain.com:8085.

Ports and addresses are properly mapped and everything should work in theory, but it doesn't.
We can connect from local network, but over the internet we keep getting "Security error.".
We're using identical SoftPro credentials in both cases, example:
var credentials = new NetworkCredential("TestUser", "TestPassword", "[SERVER]");
Only thing that's different is server address and port.

To debug this, I set up clean virtual machine and created console app there only to test connection over the internet to our server.
This is the only hint I got so far, output from Visual Studio:
"Failed to authenticate the current user. The message with To 'http://softpro.domain.com:8085/Integrat ... 9345374069' cannot be processed at the receiver, due to an AddressFilter mismatch at the EndpointDispatcher. Check that the sender and receiver's EndpointAddresses agree."

I assume this is due to differences in port number? But I'm not sure what would be the best way to resolve this, maybe by changing port number of our SoftPro Server installation? If that's even possible?
Any suggestions?
John Morris
Posts: 411
Joined: Thu Sep 11, 2008 11:35 am
Location: Raleigh, NC, USA
Contact:

Re: Access over the internet and different port numbers

Post by John Morris »

With the current release of Select, it is recommended to use a VPN network connection over the internet. This will provided an added level of security for your network transmissions.

We are currently working on a feature set that would enable the use of SSL-offload devices (load balancers, gateways, etc) in order to remove the VPN recommendation and simplify the use of the system across an public network, such as the internet.

There are internal limitations as to why you're seeing the port issue. The client must connect to the same port that the server is configured to use. So, if the server is setup for 8080, the client must also use 8080. You can change that setting, but it will also affect internal client access too (i.e. everyone would need to use 8085).
John Morris
Sr. Software Architect
SoftPro
slaven
Posts: 7
Joined: Fri May 11, 2018 5:17 am

Re: Access over the internet and different port numbers

Post by slaven »

Since this is staging server and we need to get it up and running ASAP, using identical ports resolved our issue.
Next step will be to use VPN instead.
Thank you!
Post Reply