Configuring Outgoing Tunnel Connections

You can configure outgoing tunnel connection protocols for CommCell components.

You can set the tunnel connection protocol at the client/client group level, or you can set the protocol for an individual route.

Note

HTTPS and HTTPSA tunnel traffic may be interrupted by a third-party security or traffic monitoring device. If such a device exists, make sure to add an exclusion from our traffic or switch the tunnel protocol to Raw.

The following are tunnel connection protocol options:

Protocol Option	Description
Regular (HTTP)	This is the standard application protocol. It optimizes data transfer performance. Data and control traffic are transferred using HTTP.
Encrypted (HTTPS)	This protocol encrypts and authenticates the connections between CommCell components through Secure Socket Layer (SSL), similar to what happens when a web browser opens secure connections with https:// prefix. Data and control traffic are transferred using HTTPS protocol. Note HTTPS and HTTPSA tunnel traffic may be interrupted by a third-party security or traffic monitoring device. If such a device exists, make sure to add an exclusion from our traffic, or switch the tunnel protocol to Raw.
Authenticated (HTTPSA)	In this configuration, the HTTPS protocol is used to encrypt the initial communication between CommCell components. Once the communication is authenticated, the tunnel connection switches to HTTP, to optimize data transfer performance. Note HTTPS and HTTPSA tunnel traffic may be interrupted by a third-party security or traffic monitoring device. If such a device exists, make sure to add an exclusion from our traffic or switch the tunnel protocol to Raw.
Raw	Use this option to transmit Commvault data and control traffic using TCP packets without any form of encapsulation. This option is useful when you have determined that one or more network devices in the tunnel path, such as gateways or firewalls, are modifying the HTTP stream, and thereby preventing CommCell devices from communicating with each other.

Before You Begin

Review the supported network route types described in Configuring Network Routes, and then configure the CommCell components as appropriate for your installation.
If appropriate, configure a one-way direct connection to initiate a tunnel connection to enforce HTTPS transport. Based on the direction in which the connection is initiated, select the appropriate method to configure the network routes from Direct Connections.

Procedure 1: Setting the Tunnel Connection Protocol at the Client/Client Group Level

From the CommCell Browser, expand Client Computers, right-click the client or client group, and then click Properties.

The Properties dialog box appears.
Click Network.

The Network Properties dialog box appears.
On the Network Route Configuration tab, select the Configure Network Route Settings check box and then click Advanced. Click OK to acknowledge the warning and continue.
On the Options tab, under Default Outgoing Tunnel Protocol, select a connection protocol.
Click OK to save your changes.

Procedure 2: Setting the Tunnel Connection Protocol for an Individual Route

From the CommCell Browser, expand Client Computers, right-click the client or client group, and then click Properties.

The Properties dialog box appears.
Click Network.

The Network Properties dialog box appears.
On the Network Route Configuration tab, select the Configure Network Route Settings check box and then click Advanced. Click OK to acknowledge the warning and continue.
On the Outgoing Routes sub-tab, click Add or select an existing route to configure, and then click Edit.

The Route Settings dialog box opens.
Under Tunnel Connection Protocol, select a connection protocol.
Click OK to save your changes.