Network

The Network menu contains options for checking the status of the network and modifying the network settings.

Select 1 at the main menu to enter the Access Gateway Network Setup submenu.

Network commands

Manage Interfaces

The Manage Interfaces submenu allows you to perform the following tasks:

  • Set up DHCP management for an interface.
  • Assign or remove an IP address from an interface.
  • Assign or remove a route from an interface.

All networking changes made using the Manage Interfaces submenu are collected and must be persisted when completed using the Commit changes to system menu element.

Changes are made immediately but are only persisted when committed using Commit changes to system.

  1. In the Access Gateway Management console, press 1 - Manage network interfaces to enter the Network menu.
  2. Press the number for the networking interface that you want to manage.
  3. Press a to assign a static IP address. If an interface already has a static IP address, or has a DHCP-assigned address, then this option is unavailable.
  4. Enter the IP address and press Enter.
  5. Enter the netmask for the address as four hexadecimal digits and press Enter.
  6. Enter the gateway address for the static IP address and press Enter. The Access Gateway Management console displays a confirmation message.
  7. Press c to continue with the change.
  8. Press d to set up DHCP for the interface.
  9. Press y.
  1. In the Access Gateway Management console, press 1 - Manage network interfaces to enter the Network menu.
  2. Press r to open the Manage Routes submenu.
  3. Press a to add a route.
  4. Press y to make this route the default route, otherwise press n.
  5. Press Enter.
  6. Enter the gateway for the route and press Enter.
  7. Enter the destination for the route and press Enter. The Access Gateway Management console displays a confirmation message.
  8. Press d to delete a route. This displays a list of routes that you can choose to delete.
  9. Press the number of the route to delete.
  10. Press y to confirm. The route is unassigned from the interface and you return to the Add/Delete IP addresses submenu.
  11. Return to the main networking menu.
  12. Press c to commit the changes.

Test network configuration

  1. Press 3 to begin the network configuration test.

  2. The system attempts to connect to www.okta.com and displays the status. Press Enter to continue.

  3. The system checks the NGINX configuration and displays the status. Press Enter to return to the Networking menu.

Edit the /etc/hosts file

The /etc/hosts file is used to configure statically assigned hostnames. Administrators can override DNS addresses for specific hostnames or provide addresses for hosts not in DNS by adding entries to /etc/hosts. This helps Okta Access Gateway connect to the correct host.

  1. Press 4 to edit the /etc/hosts file. This shows you the current entries in the hosts file by line number.

  2. Press a to add an entry.

  3. Add the entry following the standard format.

  4. To delete an entry, press d and enter the line number that corresponds to the entry you want to delete.

  5. Press c to commit the changes to the hosts file.

  6. Press x to return to the main Networking menu.

Set up NIC bonding

NIC bonding is the process of combining two ethernet ports together into a bonded virtual port. Typically, NIC bonding is used if there is sufficient traffic on a single port to saturate a single network connection.

  1. In the Access Gateway Management console, press 1 - Manage network interfaces to enter the Network menu.
  2. Press 5 to set up NIC bonding.
  3. Enter the IP address and press Enter.
  4. Enter the netmask value and press Enter.
  5. Enter the default gateway value and press Enter.
  6. Enter the primary DNS server value and press Enter.
  7. Enter the secondary DNS server value and press Enter.
  8. Enter the search domain address and press Enter.
  9. Press c to commit the changes.
  10. Review the network configuration. To confirm the changes, press y, and then press Enter. To discard your changes and return to the Networking menu, press n, and then press Enter.
  11. After the change is complete, press any key to return to the Networking menu.

Proxy Settings

Set a proxy

  1. Press 7 to set up or disable a proxy connection to the internet.
  2. Press 1 to configure the proxy.
  3. Enter the proxy hostname, and press Enter.
  4. Enter the proxy port, and press Enter.
  5. If required, enter a proxy username, and then press Enter.
  6. If required, enter a proxy password, and then press Enter.
  7. Enter the hostnames (separated by commas) that need to bypass the proxy.
  8. Press y to confirm the proxy settings, or N to abort.
  9. Press Enter to return to the proxy menu, and then press Enter again to return to the main Networking menu.

Unset a proxy

  1. Press 7 to enter the proxy menu.

  2. Press 2 to remove the proxy configuration.

  3. Enter y to confirm.

  4. Press Enter to return to the proxy menu, and press Enter again to return to the main Networking menu.

Ping

The Ping option can check if a destination host is reachable from the Access Gateway appliance.

  1. Press 8 to enter the ping menu.

  2. Enter the hostname or IP address for the destination host that you want to ping, and press Enter.

  3. The system displays the ping results.

  4. Press Enter to return to the main Networking menu.

Connectivity Test

This test validates a connection between the Access Gateway and any other system. This tool can also be used to validate if a back-end application or server is reachable from the Access Gateway appliance.

  1. Select 9 from the Network menu.

  2. Enter the hostname or IP address of the machine that you want to test, and press Enter.

  3. Enter the port number that needs to be tested, and press Enter.

  4. The system displays the connection results.

  5. Press Enter to return to the Networking menu.

Manage DNS Settings

The Manage DNS Setting submenu is used to add, delete, or modify domain name servers, and search domains.

  1. In the Access Gateway Management console, press 1 - Manage network interfaces to open the Network menu.
  2. Press 8 from the network menu. The current DNS Name Server settings appear.
  3. Press x to exit and return to the parent menu.

Manage DNS servers

  1. Enter 1 to enter the Manage DNS servers submenu. This displays the current DNS servers.
    Managing DNS Servers Primary: 192.168.8.8 Secondary: Tertiary: . . .
  2. Enter 1 to set the Primary DNS server.
  3. Enter 2 to set the Secondary DNS server.
  4. Enter 3 to set the Tertiary DNS server.

    When no DNS servers are set, setting a secondary or tertiary DNS server results in setting a primary DNS server.

    Primary DNS Server IP addresses can't be blank, while secondary and tertiary DNS servers may be omitted.

  5. Enter the IP address for the selected DNS server and click Enter. The updated DNS server list appears.
  6. Enter x to exit and return to the parent menu.

Manage search domains

Access Gateway supports up to six search domains.

  1. Enter 2 to enter the Manage search domains submenu. The current search domains appear.
    Current search domains: okta.com someotherdomain.com . . .
  2. Enter a to add a search domain.
    1. Enter the new search domain followed by Enter.
    2. The new search domain is added and the current list appears.
      Current search domains: okta.com someotherdomain.com . . .
  3. Enter r to remove an existing search domain. The list of existing search domains appears.
    Remove which search domain: 1: okta.com 2: someotherdomain.com . . .
    1. Enter the number associated with the search domain to be removed.
    2. The search domain is removed and the current list appears. For example, after removing someotherdomain.com, the output is okta.com.
      Current search domains: okta.com . . .

Manage Trusted Domains

This menu is used to enable, disable, or view trusted domains.

  1. Select 9 from the network menu to open the Manage Trusted Domains submenu:
    Manage Trusted Domains (status: Enabled/Disabled) 1 - Enable/Disable trusted domain 2 - View trust domains x - Exit

  2. Enter x to exit and return to the parent menu.

Enable or Display trusted domains

  1. Enter 1 to toggle the Enable/Disable trusted domain option.
  2. The Manage Trusted Domains menu displays the status for trusted domains.

View trust domains

  1. Enter 2 to view trusted domains. The list of trusted domains appears.
    UP/DOWN/HOME/END - scroll list x - exit trusted-one.domain.com trusted-two.domain.com . . . trusted-n.domain.com . . .

    The view option is still present but displays a warning if an attempt is made to view trusted domains when disabled.

  2. Enter x to exit.
    The Manage Trusted Domains menu appears and shows the current status for trusted domains.

Show a running configuration

This option can be used to display details of the current configuration, including interface, DNS, and routing and host file contents.

  1. Select s from the Networking menu.
  2. Press Enter to display running configuration details.
  3. Press Enter to return to the Networking menu.

View the configuration change plan

Display details of the current configuration including interface, DNS, and the routing and host file contents.

  1. Select v from the Networking menu.

  2. Press Enter to return to the Networking menu.

DNS Lookup

Perform a DNS lookup for a given hostname.

  1. Select d from the Networking menu.
  2. Enter the host name or IP address that you want to look up.
  3. Enter the host name or IP address of the DNS server.
  4. Press Enter to start the search operation.
  5. Press Enter to return to the Networking menu.

Connectivity test (cURL)

  1. Select u from the Networking menu.
  2. Enter the URL to which you want to test connectivity.
  3. Press Enter to return to the Networking menu.

Commit the changes

  1. Select c from the Networking menu.
  2. Select y to commit, or n to ignore changes.
  3. Press Enter to return to the Networking menu.

Restart Networking

  1. Select r from the Networking menu.

  2. Networking restarts.

  3. Press Enter to return to the Networking menu.