THE INFORMATION IN THIS ARTICLE APPLIES
TO:
- DMZ Gateway version 3.0.0 and later
DISCUSSION
By default, DMZ Gateway limits the
number of network access policy exceptions that may by defined in both the
“grant” and “deny” exception lists.
You can override the default limit by
editing a system property, as described below.
|
GlobalSCAPE Quality Assurance tested
the system with the default setting; changing this setting from the default may
cause as yet unknown issues.
|
To override the default setting:
- Open the file <InstallDir>\conf\DMZGatewayServerService.conf
in a text editor.
- Locate the “Additional Java
Parameters” section, which will be similar to the following text:
# Additional Java parameters.
Add parameters as needed starting from 1.
# By default, use the server
Virtual Machine.
wrapper.java.additional.1=-server
wrapper.java.additional.2=-DDMZSharedConfigurationDirectory=%DMZ_SHARED_CONFIG_DIRECTORY%
wrapper.java.additional.2.stripquotes=TRUE
wrapper.java.additional.3=-Djava.ext.dirs=bin/jre1.6.0_24/lib/ext
- Add the following line at the end
of the section:
wrapper.java.additional.<Index>=-DNetworkAccessPolicyExceptionLimit=<New
Limit>
Where
“<Index>” is 1 more than the index number in the previous line and
“<New Limit>” is the desired network access policy acception limit. For
example:
# Additional Java parameters.
Add parameters as needed starting from 1.
# By default, use the server
Virtual Machine.
wrapper.java.additional.1=-server
wrapper.java.additional.2=-DDMZSharedConfigurationDirectory=%DMZ_SHARED_CONFIG_DIRECTORY%
wrapper.java.additional.2.stripquotes=TRUE
wrapper.java.additional.3=-Djava.ext.dirs=bin/jre1.6.0_24/lib/ext
wrapper.java.additional.4=-DNetworkAccessPolicyExceptionLimit=2500
Will set the
network access policy exception limit to 2500 entries per list.
- Save your changes.
- Restart the DMZ Gateway Server
Windows Service.
- To verify that the changes have
taken effect, open the file <InstallDir>\logs\DMZGatewayServer.log
and locate the most recent log message containing the text "Number of
network access policy exceptions is limited to:" This
line will display the active network access policy exception limit.