Appliance | cz-configd | Manages and applies the appliance configuration, works with the Controller (cz-managed). Also handles appliance configuration seeding. |
cz-coredns | Handles all DNS requests on the appliance. | |
cz-proxyd | Listens for TCP connections and forwards them to nginx [HTTPS traffic] or one of the cz-vpnd instances [VPN traffic] respectively. Moreover, it handles the PROXY and Single Packet Authroization protocols according to its configuration. | |
cz-nginx | Frontend for all the HTTPS traffic, routes it to the correct daemon and the admin UI. | |
rsyslog | Receives the audit-logs from cz-logd, gathers logs from all the daemons running on the appliance and forwards them to external log systems. | |
cz-logd | Gathers the audit-logs from all the daemons running on the appliance, and forwards then to Rsyslog and LogServer. | |
ssh | Handles ssh connections to the appliance. | |
Controller | cz-controllerd | Handles all the authentication, authorization, entitlements, policies & vonditions, tokens, etc. |
Gateway | cz-vpnd | Handles the actual VPN traffic and has the firewall engine. There are multiple vpnd daemons running per Appliance and each has its own log file. Vpnd creates a tun device for each client connection. |
cz-sessiond | Handles the Client claims and entitlement tokens and generates the firewall rules that it sends to vpnd. It also works with named to resolve names that might be contained in entitlements. | |
cz-gonamed | Name resolvers provide support for various types of cloud resolver ( | |
cz-had | Handles client failover via the ARP (IPv4) and NDP protocol (IPv6). It is also used to handle ARP and NDP requests sent over the local network so that the router and/or endpoints can find where to send back traffic to the clients through the tunnel. | |
Connector | appgateservice@.service | Service to manage the client service. |
appgatedriver@.service | Service to manage the client driver. | |
appgate-netns@.service | Service that creates/destroys the namespaces needed to run the clients. | |
appgate-veth@.service | Service that sets/unsets the network interfaces/routes needed to run the clients. | |
Portal | cz-webd | Session management |
cz-webclient@xxxx | Specific session instance | |
cz-clientd | Responsible for creating or destroying client instances | |
cz-dnsproxyd | DNS forwarding between nginx and user's client | |
nginx_portal | Entry point for user's browsers, does tunneling towards endpoints (through clients) | |
LogServer | cz-logd | Parses the audit-logs and inserts them into Opensearch. |
cz-Opensearch | Log database used for audit logs. | |
cz-kibana | Log viewer used to view audit logs. | |
LogForwarder | cz-logd | Parses the audit.logs and forwards them to configured destinations. |
Metrics Aggregator | cz-agentx | Handles metrics for Prometheus and SNMP. |
Daemon names in logs
- 1 minute read
Was this article helpful?