Can you get encrypted bidirectional communication using WCF where the client can be behind a proxy, firewall, or NAT?

Question

Can you get encrypted bidirectional communication using WCF where the client can be behind a proxy, firewall, or NAT?

I have a client and a server written in .net 3.5 so I have no compatibility issues.

The server is fully reachable on port 443 (I host it to open other ports as needed)

The client, however, is less accessible. This is often behind a corporate firewall or NAT, or uses an http / https proxy to connect to the internet.

I need to establish an encrypted bi-directional communication between client and server.

The two bidirectional pipes provided in WCF don't seem to do the trick:

NetTcpBinding does not support HTTP proxy ( source )
WSDualHttpBinding requires the client to have a public URI that provides a callback endpoint for the service, which is unfortunately not here ( source )

Can WCF establish this encrypted bidirectional connection (silently using https tuning if necessary) without having to configure the client side firewall / proxy settings?

+1

.net wcf wcf-binding

Brann Dec 18 '08 at 12:31

source to share

6 answers

Joel lucsy · Answer 1 · 2008-12-18T15:30:18+0000

You are looking for a technology called Comet. Wikipedia entry If you google comet wcf, you will find articles that should point you in the right direction.

score 0 · Answer 2 · 2008-12-18T12:38:41+0000

Yes. You can use WSDualHttpBinding or NetTcpBinding.

ZombieSheep · Answer 3 · 2008-12-18T14:08:45+0000

A sane firewall should allow this behavior. Because communication is client initiated, the stateful firewall allows the communication channel to remain open, but only between two well-known endpoints.

Brann · Answer 4 · 2008-12-18T15:32:56+0000

I found some interesting information here

Basically, you can edit your app.config file like this:

<system.net>
   <defaultProxy useDefaultCredentials="true">
      <proxy bypassonlocal="False" proxyaddress="http://gateway:8080" />
   </defaultProxy>
</system.net>

I'm not sure if it works for NetTcpBinding, although the article claims it works for custom bindings. I'll try and let you know what happened.

UPDATE: it doesn't work (default config only works for http and https requests)

joshperry · Answer 5 · 2009-04-17T19:06:31+0000

I have a similar need and saw this article about the Comet-esque feature they provided for Silverlight 2 over WCF: Silverlight Polling Duplex .

I haven't tried it yet, but I think that an assembly built against the desktop runtime might also include client classes, if that might be useful outside of Silverlight.

Edit: I've checked both assemblies and they both implement the same Bindings and Channels, it looks like the exact same code that was just generated against desktop frames; therefore, you can use the Server assembly in a desktop application.

Shaul behr · Answer 6 · 2010-12-24T12:24:32+0000

According to this answer , I got a similar question: .NET v4 works across NAT with the WSDualHttpBinding class. Your question was asked a couple of years ago, so it wasn't for you then ...

Can you get encrypted bidirectional communication using WCF where the client can be behind a proxy, firewall, or NAT?

More articles: