Hybrid Data Connect

TABLE OF CONTENTS

• Overview
• Chargeable
• How it works
• Requirements
• Deployment
• Testing
• FAQ
  • What Firewall rules are needed on the Client network

Overview

Hybrid Data Connect is a licensed third party application that allows for a secure tunnel through to a database engine in your local network for Prodoc interfacing. Using this application, Prodoc can directly pull data from an ERP system to build shipments on demand without exposing Prodoc, or your database, to the internet.

Chargeable

Please be aware this feature carries charges, please speak to your Customer Success Manager or Support for rates.

How it works

1. A Prodoc user enters an agreed shipment reference into Prodoc
2. Prodoc authenticates to a Hybrid Connect server [TradeWindow network] and sends through a package of data including a customer defined SQL query
3. The Hybrid Connect Node [Client network] and Hybrid Connect Server [TradeWindow network] transfer the request to the client network
4. The Hybrid Connect Node queries the database and returns the results to the Hybrid Connect Server
5. The Hybrid Connect Server returns the results to Prodoc
6. Prodoc builds the shipment

Requirements

• A "Hybrid Connect Node" which is a Windows based device running the node application. TradeWindow can supply a VM image [preferred] that is preconfigured for use, or the client can build their own image/machine for this purpose and install the TradeWindow supplied binaries and configuration data.
  • Option 1 : TradeWindow Provided Image (preferred)

    TradeWindow will provide, using a secure file transfer and 2FA PIN, the image to be used for the Hybrid Connect Node.

    The image provided is hardened to CIS (Center for Internet Security) / NIST (National Institute of Standards and Technology) standards, by TradeWindow.

    The image will be maintain to CIS / NIST standards following any major operating system updates, with a minimum of 6 months.

    The node:

    • is designed to be treated like an appliance that needs near zero touch.

    • will auto apply windows security updates at 02:00 every Tuesday Morning.

    • does not require an open remote access capability

  • Option 2 : Customer Provided Image

    • Customer will provide the Image and hosting within their own environments.

      The image provided by the customer must be hardened to CIS (Center for Internet Security) / NIST (National Institute of Standards and Technology) or comparable standards.

    • The image must be maintain to CIS / NIST standards following any major operating system updates, with a minimum of 6 months.

    • The node is designed to be treated like an appliance that needs near zero touch.

      • will auto apply windows security updates at 02:00 every Tuesday Morning.

      • does not require an open remote access capability for TradeWindow

    • Customer must evidence to TradeWindow the compliance.

    • Specification for the node is:

      • Windows 10,11 Pro

      • Memory : Min 4G

      • Disk : 100 GB

      • CPU : Min 2 Cores

      • Security : Windows Defender, Windows Firewall

      • Networking : Location on a DMZ with Internet access and connectivity to the ERP through the specified firewall rules.

    • TradeWindow will provide the Hybrid Connect Binary and configuration files needed for the customer, installation of the files is a very simple process.

Deployment

Connect Services

• Created DMZ

• Setup on Hybrid Connect on-prem Node

• Connect Hybrid Connect on-prem Node to Hybrid Connect Server

Connect DB

• Agree Views on customer ERP

• Setup DB user accounts

Prodoc Configure

• Configure Product to utilise customer DB

Testing

Go to Windows Services and restart the service starting “TradeWindow”, this will start the client process that communicates with the TW Hybrid Connect Server.

To test communication from the customer site they can type “config” in the windows search bar and select “Configuration Tool”. This will bring up the “Trade Window Configuration Tool”, showing a screen like this:

The customer should then press “Test” and a successful test should show:

FAQ

What Firewall rules are needed on the Client network

The following firewall rules are required to allow the Hybrid Connect service to function

TW Hybrid Connect On-prem Node : Customer to confirm IP

Customer ERP : Customer to confirm IP

TW Hybrid Connect Server : 20.92.232.244