CICS Transaction Gateway at Dexia Insurance Belgium

Slides:

Advertisements

Similar presentations

Internet Applications INTERNET APPLICATIONS. Internet Applications Domain Name Service Proxy Service Mail Service Web Service.

Advertisements

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Operating Systems Concepts 1/e Ruth Watson Chapter 11 Chapter 11 Network Maintenance Ruth Watson.

Integrating CICS applications into SOA

1 Week #1 Objectives Review clients, servers, and Windows network models Differentiate among the editions of Server 2008 Discuss the new Windows Server.

1 Week #1 Objectives Review clients, servers, and Windows network models Differentiate among the editions of Server 2008 Discuss the new Windows Server.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Introduction to z/OS Basics © 2006 IBM Corporation Chapter 13: z/OS HTTP Server.

Lesson 20 – OTHER WINDOWS 2000 SERVER SERVICES. DHCP server DNS RAS and RRAS Internet Information Server Cluster services Windows terminal services OVERVIEW.

Beth Johnson April 27, What is a Firewall Firewall mechanisms are used to control internet access An organization places a firewall at each external.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

Lesson 1: Configuring Network Load Balancing

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.

MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Ten Configuring Windows Server 2008 for High.

Introduction to the new mainframe © Copyright IBM Corp., All rights reserved. Chapter 13: z/OS HTTP Server.

 Distributed Software Chapter 18 - Distributed Software1.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.

Course 201 – Administration, Content Inspection and SSL VPN

Basic Network Training. Cable/DSL Modem The modem is the first link in the chain It is usually provided by the ISP and often has a coax cable connector.

IT 210 The Internet & World Wide Web introduction.

Workshop 1: Introduction to TCP/IP

Barracuda Load Balancer Server Availability and Scalability.

Intranet, Extranet, Firewall. Intranet and Extranet.

Guide to MCSE , Second Edition, Enhanced1 Windows XP Network Overview Most versatile Windows operating system Supports local area network (LAN) connections.

Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 3: TCP/IP Architecture.

HTTP client wide area network (Internet) HTTP proxy HTTP server HTTP gateway firewall HTTP tunnel Copyright Springer Verlag Berlin Heidelberg 2004.

Technology Overview. Agenda What’s New and Better in Windows Server 2003? Why Upgrade to Windows Server 2003 ?  From Windows NT 4.0  From Windows 2000.

Networked Application Architecture Design. Application Building Blocks Application Software Data Infrastructure Software Local Area Network Server Desktop.

© 2006 Cisco Systems, Inc. All rights reserved.1 Microsoft Network Load Balancing Support Vivek V

INSTALLING MICROSOFT EXCHANGE SERVER 2003 CLUSTERS AND FRONT-END AND BACK ‑ END SERVERS Chapter 4.

CS 493/693: Distributed Systems Programming V. “Juggy” Jagannathan CSEE, West Virginia University March 21, 2005.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols.

Component 9 – Networking and Health Information Exchange Unit 1-1 ISO Open Systems Interconnection (OSI) This material was developed by Duke University,

Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.

Module 5: Designing a Terminal Services Infrastructure.

TWSd - Security Workshop Part I of III T302 Tuesday, 4/20/2010 TWS Distributed & Mainframe User Education April 18-21, 2010  Carefree Resort  Carefree,

Module 11: Implementing ISA Server 2004 Enterprise Edition.

Cisco ASA 5505 Joseph Cicero Northeast Wisconsin Technical College.

Remote Access Using Citrix Presentation Server December 6, 2006 Matthew Granger IT665.

Application Layer Khondaker Abdullah-Al-Mamun Lecturer, CSE Instructor, CNAP AUST.

MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Five Windows Server 2008 Remote Desktop Services,

Application Services COM211 Communications and Networks CDA College Theodoros Christophides

Computer Networking From LANs to WANs: Hardware, Software, and Security Chapter 13 FTP and Telnet.

"The majority of users in a typical enterprise simply want frequent, location-independent access to a few key applications, such as , calendar and.

Database Systems: Design, Implementation, and Management Eighth Edition Chapter 14 Database Connectivity and Web Technologies.

CS 501: Software Engineering Fall 1999 Lecture 12 System Architecture III Distributed Objects.

1 Installing and Maintaining ISA Server Planning an ISA Server Deployment Understand the current network infrastructure. Review company security.

"The majority of users in a typical enterprise simply want frequent, location-independent access to a few key applications, such as , calendar and.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network, Enhanced Chapter 3: TCP/IP Architecture.

Accessing Evitech network via FTP by Susan Jansson.

Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®

WEEK 11 – TOPOLOGIES, TCP/IP, SHARING & SECURITY IT1001- Personal Computer Hardware System & Operations.

Mainframe Connectivity

ViaSQL Technical Overview. Viaserv, Inc. 2 ViaSQL Support for S/390 n Originally a VSE product n OS/390 version released in 1999 n Identical features.

1 Mainframe Connectivity. 2 Access to ViaSQL Access Server n ViaSQL Direct and ViaSQL Integrator n TCP/IP –easier to set up –less configurable n APPC.

Introduction to the new mainfame © Copyright IBM Corp., All rights reserved. Chapter 14a: z/OS HTTP Server.

Module 14: Advanced Topics and Troubleshooting. Microsoft ® Windows ® Small Business Server (SBS) 2008 Management Console (Advanced Mode) Managing Windows.

COMP1321 Digital Infrastructure Richard Henson March 2016.

Windows Vista Configuration MCTS : Advanced Networking.

Chapter 7: Using Network Clients The Complete Guide To Linux System Administration.

Instructor Materials Chapter 5 Providing Network Services

z/Ware 2.0 Technical Overview

Network Load Balancing

Introduction to CICS Transaction Server

Unit 27: Network Operating Systems

ApplinX Rod Carlson Senior Technical Lead.

APACHE WEB SERVER.

Presentation transcript:

CICS Transaction Gateway at Dexia Insurance Belgium CTG at DIB CICS Transaction Gateway at Dexia Insurance Belgium GSE CICS-DB2 11/10/2007 Rainbow ICT Services Peter Christensen

CTG at DIB Mainframe environment Decentral on INTEL LPAR Mips ENV DB2 Z/OS 1.7 DB2 7.0 CICS TS 2.3 MQ Series RACF OPC 3 LPAR: Decentral on INTEL Virtualization: VMWARE CITRIX WAS 5.1 JAVA 1.4 & 1.6 CTG 6.0.1 LPAR Mips ENV DB2 CICS PROD 505 1 3 8 DVLP TEST 380 5 13 55 INST 36 6

CTG at DIB Gateway Deamon Client deamon CICS Transaction Gateway IBM CICS Transaction Gateway provides secure, easy access from Web browsers and network computers to CICS applications, using standard Internet protocols in a range of configurations. Gateway Deamon Supports communication between client (eg Browser) and CTG server  manages connections = connection thread(s) Client deamon Supports communication between CTG server and CICS Servers  manages ECI-requests = worker thread(s) Local Mode – Remote mode

CTG at DIB Platforms Z/OS Sysplex LINUX UNIX WINDOWS Connection protocols TCPIP (CICS 2.1) TCP62 SNA

CTG at DIB ECI (External call interface) Calling a CICS program in a CICS server Commarea based (EXEC CICS LINK) EPI (External presentation interface) Installs and deletes virtual IBM 3270 terminals Supports ATI (Automatic Transaction Initiation) ESI (External security interface) Accesses userid data in CICS External Security Manager Setting default security management . ECI is only used at DIB . ECI calls: program – status – reply solicitation – callback . ECI calls : synchronous – asynchronous . ECI calls: non extended  cics server decidesif recoverable resources are comitted extended  client program decides  extended LUW . Several ECI requests can be launched form one cics client to differen cics regions . ESI only over SNA or TCP62

CTG at DIB ECI request Commarea LUW control LUW Identifier Programname Userid Password CICS server Tpnname Tranname Java Coding: String IPadr = "tcp://" + IPaddress; jg = new JavaGateway(IPadr,port); ECIRequest req = new CIRequest(ECIRequest.ECI_SYNC, connectionID, uid, pwd, programma, transid, commarea, 80, ECIRequest.ECI_NO_EXTEND, ECIRequest.ECI_LUW_NEW); jg.flow(req); jg.close(); LUW control  control starting, continuing and ending of a LUW LUW id  unique token identifying the LUW (cfr. Extended calls) TPNname  transid (linked to DFHMIRS) that will invoke the cics server program Tranname  replaces EIBTRNID USERID/PASSWORD authentication + autorisation  accountability stored in ESM of CICS (no problem with expiration) inactive parameter USRDELAY in SIT  useful in TEST envirenments

CTG at DIB Programming Languages JAVA JCA (J2EE Communication Architecture) C , C++ and COBOL COM Providing J2EE connector adapters  WAS applications Platform dependent, eg COBOL and COM not on LINUX

CTG at DIB Applications: Local Mode – Remote Mode

CTG at DIB Gateway Configuration

CTG at DIB Client Configuration

CTG at DIB CICS TCPIP Service Definition OBJECT CHARACTERISTICS CICS RELEASE = 0630 CEDA View TCpipservice( TXPA ) TCpipservice : TXPA GROup : DVVTCPPA DEscription : Urm : POrtnumber : 03611 1-65535 STatus : Open Open | Closed PROtocol : Eci Iiop | Http | Eci TRansaction : CIEP Backlog : 00100 0-32767 TSqprefix : Ipaddress : ANY SOcketclose : No No | 0-240000 (HHMMSS) SECURITY SSl : No Yes | No | Clientauth Certificate : (Mixed Case) PRIvacy : Notsupported | Required | Supported AUthenticate : No | Basic | Certificate | AUTORegister | AUTOMatic | ASserted ATtachsec : Verify Local | Verify DNS CONNECTION BALANCING DNsgroup : GRPcritical : No No | Yes

CTG at DIB Scheme for Production DVSPCTGXX NLB-Cluster DIBIS Client DIBIS Appl (CITRIX) - IE with DC4ASF (WAS) Z/OS 1.7 dvvlapmf.dvsys.dv.be DVSPCTGXX NLB-Cluster Heartbeat TCP/IP Host1 DVSPCTG01 (Server – Livingstone) Port#: 2006 DVCTGPRD (C-NAME to DVSPCTGXX) 172.25.20.20 CICSPA Port#: 3611 Host2 DVSPCTG02 (VMware – Livingstone) Port#: 2006 Heartbeat Claint: - IE with E-mail (WAS) Heartbeat CICSP2 Port#: 3392 Task Server

CTG at DIB NUMBERS: CPU on INTEL-server < 5% PROD 215.000/day PROD office hours 25.000/hour DVLP/TEST 70.000/day Stress/Performance 120.000/hour AVERAGE RESP END-TO-END 13 ms Includes CIEP + Mirror Trans minimal functionality in CICS LAN CPU on INTEL-server < 5% STORAGE on INTEL-SEREVR < 400 MB

CTG at DIB MS Network Load Balancing Advantages No additional cost Simple setup – dynamic configuration Allows by server failure to route IP-traffic to other servers defined in the cluster Disadvantages Is limited to detection of unavailability of IP-stack  Application failure is not detected Heartbeat Checks on a timely base the availability of application, via callout infrastructure intervention on NLB cluster can be triggered Management: NLB Manager Activated via command prompt Create Cluster Add – Remove hosts Start – Stop – DrainStop hosts Activate logging

CTG at DIB MS Network Load Balancing (continued)

CTG at DIB Evaluation at DIB Availability: High  no incidents in 2 years Scalable: High  limits are not met yet Implementation: Easy  basic architecture simple installation simple configuration No operational issues TO DO Implemenation of SSL Reporting Performance – Tracing References IBM CICS Transaction Gateway version 6.0.1