TABLE OF CONTENTS
Overview
Hybrid Data Connect is a licensed third party application that allows for a secure tunnel through to a database engine in your local network for Prodoc interfacing. Using this application, Prodoc can directly pull data from an ERP system to build shipments on demand without exposing Prodoc, or your database, to the internet.
Chargeable
Please be aware this feature carries charges, please speak to your Customer Success Manager or Support for rates.
How it works
- A Prodoc user enters an agreed shipment reference into Prodoc
- Prodoc authenticates to a Hybrid Connect server [TradeWindow network] and sends through a package of data including a customer defined SQL query
- The Hybrid Connect Node [Client network] and Hybrid Connect Server [TradeWindow network] transfer the request to the client network
- The Hybrid Connect Node queries the database and returns the results to the Hybrid Connect Server
- The Hybrid Connect Server returns the results to Prodoc
- Prodoc builds the shipment
Requirements
- A "Hybrid Connect Node" which is a Windows based device running the node application. TradeWindow can supply a VM image [preferred] that is preconfigured for use, or the client can build their own image/machine for this purpose and install the TradeWindow supplied binaries and configuration data.
- Option 1 : TradeWindow Provided Image (preferred)
TradeWindow will provide, using a secure file transfer and 2FA PIN, the image to be used for the Hybrid Connect Node.
The image provided is hardened to CIS (Center for Internet Security) / NIST (National Institute of Standards and Technology) standards, by TradeWindow.
The image will be maintain to CIS / NIST standards following any major operating system updates, with a minimum of 6 months.
The node:
is designed to be treated like an appliance that needs near zero touch.
will auto apply windows security updates at 02:00 every Tuesday Morning.
does not require an open remote access capability
Option 2 : Customer Provided Image
Customer will provide the Image and hosting within their own environments.
The image provided by the customer must be hardened to CIS (Center for Internet Security) / NIST (National Institute of Standards and Technology) or comparable standards.
The image must be maintain to CIS / NIST standards following any major operating system updates, with a minimum of 6 months.
The node is designed to be treated like an appliance that needs near zero touch.
will auto apply windows security updates at 02:00 every Tuesday Morning.
does not require an open remote access capability for TradeWindow
Customer must evidence to TradeWindow the compliance.
Specification for the node is:
Windows 10,11 Pro
Memory : Min 4G
Disk : 100 GB
CPU : Min 2 Cores
Security : Windows Defender, Windows Firewall
Networking : Location on a DMZ with Internet access and connectivity to the ERP through the specified firewall rules.
TradeWindow will provide the Hybrid Connect Binary and configuration files needed for the customer, installation of the files is a very simple process.
- Option 1 : TradeWindow Provided Image (preferred)
Deployment
Connect Services
Created DMZ
Setup on Hybrid Connect on-prem Node
Connect Hybrid Connect on-prem Node to Hybrid Connect Server
Connect DB
Agree Views on customer ERP
Setup DB user accounts
Prodoc Configure
Configure Product to utilise customer DB
Testing
Go to Windows Services and restart the service starting “TradeWindow”, this will start the client process that communicates with the TW Hybrid Connect Server.
To test communication from the customer site they can type “config” in the windows search bar and select “Configuration Tool”. This will bring up the “Trade Window Configuration Tool”, showing a screen like this:
The customer should then press “Test” and a successful test should show:
FAQ
What Firewall rules are needed on the Client network
The following firewall rules are required to allow the Hybrid Connect service to function
TW Hybrid Connect On-prem Node : Customer to confirm IP
Customer ERP : Customer to confirm IP
TW Hybrid Connect Server : 20.92.232.244
Allow Hybrid Connect Node communicate with Customer on-prem ERP | TW Hybrid Connect Node | Customer ERP | DB Connection Port |
Allow Hybrid Connect on-prem Node communicate with Hybrid Connect Server | TW Hybrid Connect on-prem Node | TW Hybrid Connect Server | 40501, 11280, 11443, 8282, 8443 |
Allow Hybrid Connect Server communicate with Hybrid Connect on-prem Node | TW Hybrid Connect Server | TW Hybrid Connect on-prem Node | Allow outbound traffic to Connect server IP |
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article