ZTNA Gateway
Configure the node to act as a Zero Trust Network Access server
2 minute read
Navigate to a node, then select ZTNA Gateway under the Network section.
HTTPS Endpoint
The HTTPS endpoint is used to provide connectivity for non-WireGuard ZTNA applications.
| Field Name | Description |
|---|---|
| Enabled | When enabled, this node will listen for ZTNA traffic. |
| Public FQDN | The IP or FQDN of the node or the load balancer in front of the node. If using a domain name without a load balancer, be sure to select the appropriate certificate. |
| Port | The port to listen on. Users will always connect on port 443, so only change this if the node is behind a load balancer. |
| Certificate | The certificate to use for TLS traffic. Only needed if the node is to be directly accessed by users (i.e., without a load balancer) and the FQDN is a domain name. |
WireGuard Endpoint
The WireGuard endpoint is used to provide connectivity for WireGuard ZTNA applications.
| Field Name | Description |
|---|---|
| Enabled | When enabled, this node will listen for WireGuard traffic. |
| Public FQDN | The IP or FQDN of the node or the load balancer in front of the node. |
| Port | The port to listen on. |
| Public Key | The node’s WireGuard public key. This can be generated or imported using the actions dropdown. Note that regenerated the key will disconnect existing clients and require users to reconfigure their WireGuard connection. |
“WireGuard” is a registered trademark of Jason A. Donenfeld.
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.