Question: How do I specify the HTTPS transport-layer security for Foxhound?
Answer: You can modify the Foxhound startup command line to specify RSA encryption and the HTTPS protocol as follows:
-
Obtain an identity certificate and the associated private key for your Foxhound installation.
Store the identity certificate file in a known location.
Change the -xs option to specify https on the dbsrv17.exe command line used to start Foxhound.
Specify the identity certificate file and private key in the -xs https identity= and identity_password= parameters.
Note that the default port for HTTPS is 443.
Here is an example of a dbsrv17.exe command line modified to allow only HTTPS
access to Foxhound data using the sample certificate that comes with SQL Anywhere 17:
"%SQLANY17%\%BIN%\dbspawn.exe"^
-f "%SQLANY17%\%BIN%\dbsrv17.exe"^
-c 25p^
-ch 50p^
-cr-^
-gk all^
-gn 220^
-gna 0^
-m^
-n foxhound5^
-o foxhound5_debug.txt^
-oe foxhound5_debug_startup.txt^
-on 1M^
-sb 0^
-ufd restart^
-x tcpip^
-xd^
-xs https(identity="%SQLANYSAMP17%\Certificates\rsaserver.id";identity_password=test;port=443;maxsize=0;to=600;kto=600)^
foxhound5.db^
-n f
If you want to allow both HTTP and HTTPS access, specify both as follows:
-xs http(port=80;maxsize=0;to=600;kto=600),https(identity="%SQLANYSAMP17%\Certificates\rsaserver.id";identity_password=test;port=443;maxsize=0;to=600;kto=600)^
Here's the list of Foxhound command files which contain the dbsrv17.exe -xs option:
C:\ProgramData\RisingRoad\Foxhound5\
$backup_foxhound5.bat
$start_foxhound5_default_browser_debug.bat
$start_foxhound5_default_browser.bat
$start_foxhound5_engine.bat
C:\ProgramData\RisingRoad\Foxhound5\scripts
$create_SQL_Anywhere_17_bin64_service.bat
$MULTI_Step_2_dbsrv_all.bat
$MULTI_Step_2b_dbsrv_one.bat
$run_most_recent_mini_restore.bat
$TEN_INSTANCES_2_dbsrv.bat
|
See also...
How do I tell Foxhound to use an HTTP port other than 80?
|