Environment
Verastream Host Integrator version 7.1 SP1 through 7.7 SP2
Situation
If your Verastream Host Integrator (VHI) environment consists of
multiple servers with firewalls, you may see errors when attempting to
configure web services in Administrative Console.
View Full Size
If you have a multi-server firewalled environment, and run Administrative Console to access Session Server Properties > Web Services on a different session server, you may see the following errors:
View Full SizeView Full Size
Resolution
Complete the following steps to configure the session server to use a fixed port number for JMX communication:
- Locate the container.properties file located in the %VHI_ROOT%/sesssrvr/conf directory. Note: You are modifying the session server configuration, not the management server configuration.
- In a text editor, on the rmi.export.port.ssl line, set a desired port number for encrypted RMI communications. (The default value 0 indicates use of arbitrary ephermeral ports.)
- Important: After saving the modified file, restart the management server as described in KB 7021352.
- Configure your firewall to allow communications on the port you specified in step 2.
Note: When you upgrade your product installation in the future (major release, service pack, or hotfix), the container.properties file may revert to new defaults. After upgrading, the above steps may need to be repeated.
Cause
For web services management, the management server component
communicates with the session server using encrypted JMX/RMI (not WCP).
After a request comes into port 35000, another port (specified by rmi.export.port.ssl
property) is used to handle the request and send back the response. By
default, the property is configured to use any available arbitrary
ports, which is problematic for firewalls.