Hi, am planning to shift my pxGrid service (Passive authentication for FMC) from one of my existing VM to new distributed appliance environment.
Setup:
- Existing - 1 single node (cater all the roles)
- New - 7 nodes
- 1 x PAN (P) & MNT (S)
- 1 x PAN (S) & MNT (P)
- 5 x PSN
My plan is to enable pxGrid service in one of the PSN node only.
My question as below:
- In my FMC, do I require to add my PAN/MNT? Or just the pxGrid node subscriber
- For ports requirement > link , do I need to enable port service for other nodes, even only one node using the pxGrid service (attached my firewall port requirement)