Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
Ok everyone, I think I have a tricky one for you this time.
What is the purpose of "metadata" with the SSR?
Metadata is typically inserted with the first packet of a session. It is used by the SSR to inform the peer SSR about the characteristics of the session created - e.g. the tenant of the source endpoint, the service selected for the session, authentication information, the session key information comprising of the source/destination addresses, source/destination ports etc. .. The receiving peer then makes a routing decision based on the information received in the metadata. It also sends reverse metadata to the originating SSR containing the information about the decision made by the receiving SSR.
Well said, @SHEETANSHU SHEKHAR! To add to that, the metadata also includes a cryptographic signature using credentials that are known by both the original and receiving SSR. This allows the receiving SSR to authenticate that the sender is a trusted source. This is just one of the many ways that the SSR enforces Zero Trust Security.
Nice answers @Sheetanshu and @Jenna!
There are three main types of metadata in use within the SSR:
For more info on how the SSR uses metadata, check out this article.