About installing and deploying IAG

Applies To: Intelligent Application Gateway (IAG)

Prior to the release of Whale Communication Intelligent Application Gateway (IAG) 2007 with Service Pack 2, IAG was sold only as an appliance-based solution through our OEM partners. IAG Service Pack 1 and other updates released before Service Pack 2 are designed for installation only on an IAG appliance.

IAG 2007 with Service Pack 2 can be installed as follows:

• You can install IAG Service Pack 2 on an existing IAG hardware appliance. For more information, see Installing IAG Service Pack 2 on a hardware appliance.

• You can install IAG with Service Pack 2 as a virtual machine running on Windows Server 2008 with Hyper-V. For more information, see Installing IAG with Service Pack 2 as a virtual machine.

About deploying IAG

Initial IAG deployment steps following installation include the following:

• Generating an encryption key

• Configuring network and server settings

• Allowing remote access to internal applications.

• Optionally creating an array of multiple IAG servers for high availability.

About generating an encryption key

In order to prevent unauthorized access to the IAG server, the IAG configuration files are encrypted. You generate an encryption key when you first access IAG, and this key is used to encrypt and decrypt the IAG configuration data. Where more than one IAG server is used, servers have to be configured with an identical encryption key in order to do the following:

• Export and import configuration files between IAG servers

• Export and import URL inspection and file access rule sets

• Use a high-availability array

After an encryption key is generated, every time you carry out operations that write to the disk, you are prompted to enter the encryption passphrase. Operations include the following: saving or activating configuration files, or importing a file or rules to IAG. When you specify an encryption passphrase for the IAG Configuration console, the passphrase is valid for 10 minutes.

For information about configuring an encryption passphrase, see Configuring IAG network and server settings.

For information about modifying an existing passphrase, see Modifying IAG network and server settings.

About configuring network and server settings

Following installation deployment steps include the following: configuring network adapter settings, specifying whether the IAG server should be a domain member, and setting an update policy for the IAG server. You can complete these steps by using the Getting Started Wizard. For more information, see Configuring IAG network and server settings.

About allowing remote access to internal applications

You can allow remote access to the internal network, internal file shares, and internal applications. You can provide access to multiple internal resources by means of a single portal, or you can allow direct access to Web applications. You can complete these steps by using the Getting Started Wizard. For more information, see About publishing applications in an IAG portal and About directly publishing a single Web application with IAG.

About creating an array of IAG servers

For high-traffic sites requiring a large number of simultaneous connections, you can create an array of IAG servers. Such an array provides high availability and centralized management, and it supports a variety of load-balancing tools. An array is configured to route traffic so that is maximizes resource utilization and supports uptime. For information about configuring an IAG array, see Deploying multiple IAG servers in an array.