Software Defined Perimeter Webinar: Q&A Write-Up

Thanks to all those who joined us for our recent webinar: “Don’t Dig a Moat: Stay Ahead of Network Security Obsolescence.” Below is a write-up of the Q&A section of this webinar. Topics covered include free trials, supported platforms, and administration.

What is the trial software and how long is that license valid for?

If you want to try DxOdyssey, you are more than welcome to do so. You can set up a couple machines and create some tunnels—pretty straightforward, simple stuff to do. The process for that is we will grant you access to our Clients Portal, and then we will send you some information on where to find downloads, where to access license key, etc. You will have access to fully featured software, not a trial version, and your license key is valid for 30 days. We are also available to help you through the whole process with installation, design and configuration questions, or whatever support you need.

Does DxOdyssey support IPv6?

Yes, everything you saw today, I was using IPv4, but it definitely supports IPv6 as well.

Is there a contract term, or do I pay for usage?

The way DxOdyssey is licensed is you pay annually based on the gateways you are using, or a combination of gateways and users.

How are you administrating the gateways/routers?

In terms of administrating the gateways themselves, you saw in the demo that you just go in and use the DxOdyssey management console. By the way, there is also a client version of the administration console, so you don’t necessarily have to run that straight from the gateways themselves. As mentioned, you can also do any of these things through the API.

Are you supporting Mac and iOS?

Currently, we do not have completed Mac iOS client support, but that is coming very soon.

Does DxOdyssey still work if my gateways have no access to the Internet?

No, so in order to create a tunnel between various different sites, the gateways need to be able to go out and register with the DH2i Matchmaking Service, and that is done over the Internet. So without Internet access from your gateways, they won’t be able to find each other and you won’t be able to create any tunnels between your sites.

Do clients need to install something on their machines to access these tunnels?

It depends. If I am a local user and have access to the network on which my origin gateway resides, no, the client doesn’t need to install anything. If you are a remote client who is not on that local network, then yes, we have the lightweight remote user tool that you will need to install in order to access any tunnels you’ve been granted.

What are the installation prerequisites for a DxOdyssey gateway?

For Windows, we require .NET framework 4.5, so that would be a requirement for a Windows gateway. On Linux, similarly you would need .NET core 2.1. As far as support for Linux gateways, Red Hat, Red Hat derivatives like CentOS, as well as Ubuntu 16 and 18 are all supported.

How would you generally size the gateway machines? I know you can scale up or out, but not sure where to start…

We would generally say start with something relatively small. You don’t really need to have a massive gateway machine here. If you start with 3.5 gigs of RAM on a server, that should be totally adequate.

How many clients can go through a DxOdyssey tunnel?

As many as you wish. There is no hard limit on the gateway. As far as clients or tunnels, it’s up to you, but you would of course need to license the gateway for unlimited clients, or set up a client license for each client accessing it.

What is the gateway capacity?

We don’t add any sort of limit as far as the capacity of a gateway. It really just depends on the gateway hardware itself. We don’t add any sort of overlay over top of that.

Do the tunnels between RA users and the destination servers/infra transit the DH2i cloud?

No, there are no intermediate brokers with DxOdyssey. Tunnels connect you directly to the application(s) or service(s) you have access to.

Are there log files and can they be exported to a syslog device?

DxOdyssey logs files to journal log on Linux and Windows Event Log on Windows.

Are there any troubleshooting tools?

Within DxOdyssey admin console, you can click on a client and see all the tunnels (policies) and groups the client is granted/assigned too, plus all active connections/tunnels the client is accessing. Client permission is inclusive per tunnel. So, if the client is not granted to a tunnel, the client is denied from utilizing that tunnel.

Have you tried running the server on a Raspberry PI (4 core)?

We have not tried that use case, but as long as it’s running a supported OS, we can support it.

Please reach out to info@dh2i.com with any questions you have.

mm

Lauren Hawes