Configure an outbound proxy

For security reasons, it is possible that an Edge site has to connect via an outbound HTTP proxy. In that case, you have to update proxy.properties before installing the Edge site.

Steps

  1. Download the Edge site installer:
    1. Open an Edge site.
      1. In the main menu, click , then Settings.
        The Collibra settings page appears.
      2. Click Edge
        The Edge sites overview appears.
      3. In the Edge site overview, click the name of an Edge site.
        The Edge site page appears.
    2. In the Installer and properties files section, click Download.
    3. Depending on your operating system and browser, follow the regular steps for downloading files.
      The installer file is a TGZ archive that contains the files proxy.properties, properties.yaml and registries.yaml.

      Note If you download an installer, all previously downloaded installers become invalid.

  2. Open the proxy.properties file.
  3. Uncomment and update the outbound-proxy properties:
    http_proxy=http://site4-proxy.shared.edge.collibra.dev:3128
no_proxy=*.compute.internal,172.20.0.0/16,10.42.0.0/16,10.43.0.0/16
spring.cloud.gateway.httpclient.proxy.host=site4-proxy.shared.edge.collibra.dev
spring.cloud.gateway.httpclient.proxy.port=3128
spring.cloud.gateway.httpclient.proxy.username=edge
spring.cloud.gateway.httpclient.proxy.password=Edge-123

    Setting

    Value

    http_proxy

    The full address of the proxy server.

    The format of the address is http://<username>:<password>@<IP/DNS>:<port> where username and password are optional.

    no_proxy

    A comma-separated list of IP or DNS addresses that can bypass the proxy server.

    This list must include at least the Kubernetes cluster's internal IP addresses and the Kubernetes nodes' IP and DNS addresses.

    The list may not contain spaces.

    Example 
    no_proxy=<host-ip-addresses>,<host-dns-names>,<k8s-svc-ip-addresses>,<k8s-pod-ip-addresses>,<others>

    where:

    • <host-ip-addresses> could for example be contained in 172.20.0.0/16
    • <host-dns-names> could for example be contained in *.compute.internal
    • <k8s-svc-ip-addresses> is 10.43.0.0/16 by default (k3s), but can differ for other k8s flavours/configurations
    • <k8s-pod-ip-addresses> is 10.42.0.0/16 by default (k3s), but can differ for other k8s flavours/configurations
    • <others>: other ip/dns that might need to not be proxied, for example 169.254.169.254 is additionally needed for aws
    spring.cloud.gateway.httpclient.proxy.hostThe IP or DNS address of the proxy server.
    spring.cloud.gateway.httpclient.proxy.portThe TCP port of the proxy server. This value must be a quoted string and not an integer value.
    spring.cloud.gateway.httpclient.proxy.usernameThe username to authenticate at the proxy server.
    spring.cloud.gateway.httpclient.proxy.passwordThe password to authenticate at the proxy server.