Configure Access Gateway DNS
After deployment Access Gateway requires multiple DNS entries, for the gateway itself, testing and production.
Topics
Note
This page
- Uses the generic address 192.168.A.B to represent the IP address of a Access Gateway deployment. This is an example only.
- Uses the fictional company atko.com in examples.
Required configuration
| Value | Description |
Example |
|---|---|---|
| admin | Initial IP address of Access Gateway. Entered into the local /etc/hosts or Windows equivalent. Used only when initially configuring Access Gateway. Note: For AWS this is elastic IP, otherwise instance IP address of Access Gateway instance. |
/etc/hosts: |
| gw-admin.[yourdomain.tld] |
IP address of Access Gateway, entered into DNS typically as an A record. |
gw-admin.atko.com which might point to 192.168.A.B |
| gw [.yourdomain.tld] | Access Gateway service listener. Typically this value is entered as a DNS CNAME record pointing to the gw-admin[.yourdomain.tld]. |
gw.akto.com CNAME record pointing to gw-admin.atko.com |
Once configured the Access Gateway Admin UI console should be reachable using the https://gw-admin.[yourdomain.tld] entry as well as the http://admin from a local browser.
See Command Line Console reference > Networking > Show running configuration to determine Access Gateway IP address.
Testing and production configuration
| Name | Description |
Example |
|---|---|---|
| header.[yourdomain.tld] | For testing. IP address of Access Gateway when entered into /etc/hosts Example of a DNS name required for header application testing. |
192.168.A.B header.atko.com |
| policy.[yourdomain.tld] | For testing. IP address of Access Gateway when entered into /etc/hosts Example of a DNS name required for policy application testing. |
192.168.A.B policy.atko.com |
| peoplesoft.[yourdomain.tld] | Production example. Example of the DNS required for an application being protected by Access Gateway. This example would be used as the external (public) facing DNS name. IP address of Access Gateway when entered into /etc/hosts for testing. CNAME record pointing to gw-admin[.yourdomain.tld] when entered into DNS for actual production use. |
peoplesoft.akto.com > gw-admin.akto.com |
See also
- For more information about Access Gateway DNS use see About Access Gateway DNS use.
- Determine IP address of Access Gateway. See Command Line Console reference > Networking > Show running configuration.
- Configure Access Gateway primary and secondary DNS servers. See Command Line Console reference > Networking > Manage DNS settings.