If you already have a digital certificate, you can add it under Certificate Management.
If you want JANUSEC to apply for a free digital certificate by itself, you can choose to use
ACME automatic certificate (free certificate) in the
Domain Configuration below, and ensure that the DNS of the domain name has been pointed to the JANUSEC application gateway for the certification authority to verify the ownership of the domain name , You don’t need to add it under the certificate management (note: automatic certificates do not support wildcard domain names).
Add or Edit Application
Open web administration portal and navigate to
- Backend or Internal Scheme, default
httpand thus no certificates required in your real servers.
IP:Portformat, port is required even if the port is
- Multiple destinations for backend load balancing.
- Client IP for WAF, default
REMOTE_ADDR, Janusec WAF will get IP address from IP package, but if you are using Janusec Application Gateway behind a trustable CDN of third parties, usually the last IP of
X-Forwarded-Forshould be taken, please refer to the documentation of CDN, and select relevant option, for example: the option
X_Forwarded_Forused for the last IP of
X-Forwarded-Forwithin the request header.
- Janusec Application Gateway will add or append the IP address of the client or CDN to the end of
X-Forwarded-For, so your real servers behind Janusec Application Gateway should always use the last IP or the penultimate IP of
X-Forwarded-Foras client IP address.