Technical Tip: How to add multiple TCP Forwarding ZTNA servers

It is possible to configure one TCP Forwarding ZTNA server via the GUI.

Once a TCP Forwarding server is added, the option is greyed out, and it is not possible to configure multiple servers.

Additional servers can be added via CLI as the example below:

config firewall access-proxy
    edit "test"
        set vip "test"
            config api-gateway
                edit 1
                    set url-map "/tcp"
                    set service tcp-forwarding
                        config realservers
                            edit 1
                                set address "gmail.com"
                            next
                            edit 2 <--
                                set address "FABRIC_DEVICE" <--
                            next
                        end
                next
            end
    next
end

Once the second server is added, the option to configure multiple servers is available via the GUI as well.

This behaviour is by design as the GUI assumes most users use a single entry.