I have a self-hosted instance of Gitlab running in a local data center behind a firewall and we use Trello for all simple task/issue management. I'd like to connect Gitlab and Trello via Zapier for an automated Trello card creation process for each new issue and/or merge request. A recent attempt to connect the two did not work due to the firewall.
Are there any settings in Zapier I may be missing, potential work arounds, or another service beside Zapier that may solve the problem?
We are stuck with the instance of Gitlab.
Requests from Zapier come from AWS. If your firewall is blocking all connections from non-whitelisted IP addresses, you've got two options if you want to use Zapier with your Gitlab instance:
Whitelist all AWS IP addresses (probably not what you want to do)
Come up with a whitelisted server that will forward requests from Zapier to Gitlab. That way you only have to whitelist a server you own.
There's more info here: https://zapier.com/help/troubleshoot/behavior/cant-access-or-use-zapier-with-other-apps
Sorry I don't have better news here!
Related
I have researched around a bit where all of the captive portals are little bit complicated in terms of configuration.
I dont need AAA , I would just show a webpage where user will be click yes accept terms and then it will redirected.
I am using ignite cloud controller to manage the access points.
Implementing a service where I would like fetch SSID from a repository to match incoming SSID and then redirect based on the SSID.
I am trying to build something externally. My networking skills are pretty new.
I am confused how to get IPAddress and Necessary details from the access point there is an option in ignite cloud controller where I can specify the external settings for captive portal. (Like If my captive portal is running on remote IP, I know I can capture request incoming from access point. How? Can I build a normal web service to do that?)
I think it is straightforward implementation but little guidance is required.
I solved the above by creating a simple web service which filters the request sent from the ACCESS POINT.
There was an option in ignite cloud where I could redirect to my web-service
Once AP redirect I have to set variables in the request forwarding it back to AP with res=success.
Then it will allow me to browse web as expected.
Thanks
I need to configure docusign connect to push notifications to my application server, however it is behind a firewall. I do have a proxy but I dont see any options for configuring a proxy in the connect settings. Any advice on how to proceed with this?
There is no option to configuring a proxy in the DocuSign connect settings.
Here are some of the requirements for DocuSign connect.
Your app must include a listener HTTPS URL that DocuSign can POST to.
This URL must be available on the public internet.
It can’t be blocked by a firewall.
Here is good DocuSign blog post which discusses options when your listener is behind a firewall. Here are some of the options posted in the blog post.
You can install your listener on a Heroku, Amazon, Azure or private server that is available on the internet.
you can use a service such as ngrok to tunnel the incoming requests to your machine which is behind your fire wall.
Your server can be located on your organization’s DMZ, providing access to the internet.
Your firewall can be opened (a “pinhole opening”) to enable the incoming notification requests from DocuSign to reach your listener.
You will need to work with your IT and InfoSec departments to determine the best answer for your configuration.
We want to use Slack Webhook (Outgoing Webhook) with an internal web service.
Our company is behind a firewall, so outside connections must be whitelisted.
It appears that Slack has multiple addresses it will send the API request from, and they don't seem to be documented.
Which IPs/Ports should we open in the firewall (whitelist) in order to allow slack's outgoing webhooks to connect to our internal web service?
I know this is an old question, but I was looking for something like this myself. I think the one answer thats there doesnt really understand the question as such.
ngrok could sort-of solve an issue here, but its not quite what was asked.
Mapping ports from external to internal on a firewall that would be at a company is trivial. What I think the originator was asking was "what IP addresses do slack use when calling our service" so that you can firewall the service off to only allow access from those IP's (hence the whole white listing thing).
Simple answer as far as i can see is they are basically using lambda and various sources within AWS which makes that rather hard
An alternative could be using a VPN tunnel service to expose your internal webserver the Internet, e.g. with ngrok. I can confirm it works with Slack (I use it every day for Slack developing) and its also recommended as solution for a local development environment in the Slack tutorials.
I have a mobile application that communicates with a REST based web-service. The web-service lives behind the firewall and talks to other systems. Currently this web-service requires a firewall port to be opened and a SSL cert generated for each installation. Mobile apps sends login credentials so web-services can login to custom back-end systems.
Recently a customer approached us asking how could we deploy this to 50 offices. As we don't want to say modify every firewall in every office, we're looking for options.. This is a list of possible solutions and my thoughts on each one:
Open firewall port and expose https webservice - This is our current
solution but we dont want to have to contact 50 network admins and explain why we need to do this.
VPN - Too heavy weight, complex and expensive, we only need access
to one server. Does not solve problem as firewall needs to be
modified.
Microsoft Azure Hybrid Connection Manager - This provides a managed
service where the Azure cloud will expose an end point. Azure will
also expect connections from a easy to install application that
lives behind the firewall. When a REST call is made to the cloud
end-point, the request is forward down socket that was initiated by
the software behind the firewall. This does what we want but as its
a Microsoft Solution there might impose other requirements that our
customers might not want. Currently the simple Hybrid Connection Manager is free. But for how long?
Jscape MFT Gateway - Similar to Azure but you can host their server anywhere. Not that expensive but is not opensource.
Netty - A async java library/toolkit where this type of application could easily be build. Client and server apps would need to be build and deployed. Dont know what we dont know about Netty.
MDM, AirWatch, BlackBerry BES - A MDM based solution would work expect that MDM's are centrally managed and are not often in every office where the backend services are located. Airwatch has an AppTunnle but im not sure about the specifics.
At this point the Microsoft and Jscape systems are possible solutions.
But most likely these solutions will require us to modify the mobile software to work around issues such as:
How does the user know which server to login to? A locator service
needs to be built such that, an email address is used to lookup their
office, or they need to select their office location from a list.
While the connection is SSL many company might want some additional protection since network login information will be send down the pipe.
How is load balancing and fail-over managed?
So, at this point i'm looking for more options. The best option would be a commercial product that offers some level of customization. Second, would like a well used open-source product that could be installed in Aws and customized.
Thanks
The best approach we found was to use the PUTTY API and setup a reverse proxy.
I'm using some hosted 2008R2 servers for testing scenarious in the Azures cloud and they seem to be working well for most things.
I need clients to directly access the server via VPN such that they have full IP access to the server, for, say, SMB NET USE drive mappings, which otherwise would not be available over the Internet.
Normally, you'd just install RRAS and configure VPN.
But on these VMs, the connection from a remote VPN client fails. I'm forwarding the correct endpoints (I believe), 47 & 1723 for PPTP and 50/51/500 for IPSEC. But they aren't getting through.
The server is listening on these ports.
All my searching seems to suggest you need to use "Azures connect" for VPN access, so does this mean you can't go direct to the server for clients? I don't want to go for the Azures Connect route as I'm just playing/testing and don't want to use any proprietory methods.
Confirmation that this is impossible would be useful to save me going mad.
Azure Connect is a very good way to start; it is an Azure service so I am not sure why you are reluctant to use it. I would keep an eye on performance; VPN could very well be faster. Here is my blog post on how Azure Connect works and the steps I took to make it work: http://geekswithblogs.net/hroggero/archive/2012/10/18/how-to-create-a-virtual-network-with-azure-connect.aspx
Regarding VPN, only certain devices are supported for the preview. Please refer to MSDN for a complete list of supported devices and protocol requirements: http://msdn.microsoft.com/en-us/library/windowsazure/jj156075.aspx