Configuration File for Installing the HAF Library on an Offload Node

After the HAF library is installed on an offload node, a configuration file is generated in the /home/omm/haf-install/haf-offload/etc/haf_offload.conf directory. This file is generated based on haf_target_install.conf. Compared with haf_target_install.conf, unnecessary configuration items are deleted and some configuration items are added in this file. Table 1 describes the new configuration items. For details about other configuration items, see the haf_target_install.conf file in Configuration Items for HAF Deployment.

**Table 1** Configuration file for installing the HAF library on an offload node
Configuration Item	Description	Configurable Command Line
target_tls_switch	Indicates whether to enable TLS identity authentication and data encryption/decryption on offload nodes. The value of this parameter must be the same as that of target_tls_switch for the offload node. Otherwise, the communication fails. 1: enable (default); 0: disable.	√
ip_white_list_switch	Indicates whether to enable the IP address trustlist on offload nodes. 1: enable (default); 0: disable. Use haf-tool to update the IP address trustlist. NOTICE: If the IP address trustlist is disabled, IP addresses are not controlled, which may cause communication link attacks. For details, see Disabling the IP Address Trustlist Function.	√

Parent topic: Configuration File Description