Content Gateway with Relay and Endpoint Configuration

Content Gateway is configured with Relay and Endpoint configuration in the Workspace ONE UEM console.

Two Content Gateway server host names are configured in the Workspace ONE UEM console for Relay and Endpoint. Two sets of nodes on Unified Access Gateway are deployed for Relay and Endpoint.

The Relay nodes on Unified Access Gateway are configured with the Relay Content Gateway server hostname. The HA settings on Relay nodes on Unified Access Gateway are configured with an external floating IP address. The Relay Content Gateway server hostname gets resolved to the external floating IP address. The connections on this external floating IP are load balanced among the Relay nodes on Unified Access Gateway.

The Endpoint nodes onUnified Access Gateway are configured with the Endpoint Tunnel server hostname. The HA settings on Endpoint nodes on Unified Access Gateway are configured with an internal floating IP address. The Content Gateway service on the front end Unified Access Gateway forwards the traffic to Endpoint using the Endpoint Content Gateway server hostname. The Endpoint Content Gateway server hostname gets resolved to the internal floating IP address. The connections on this internal floating IP address are load balanced among the Endpoint nodes onUnified Access Gateway.

Figure 1. Content Gateway with Relay and Endpoint Configuration

Mode and Affinity: Least connections algorithm is used for HA and load distribution. A new request is sent to the server with the fewest number of current connections to clients. Session affinity is not required as they are stateless connections.