09-19-2012 01:35 PM - edited 03-17-2019 11:49 PM
Hi,
We plan to install a VCS Expressway Cluster in a DMZ.
Our network team requires us to have a dedicated network interface for administration because the management is operated behind another firewall.
We ave a dual nic option, do you think it's possible to use an interface connected to the DMZ and a second dedicated to admnistration and replication cluster (as you can see in attached) ?
Thanks
José
Solved! Go to Solution.
09-19-2012 07:39 PM
VCS can be managed from both network interfaces.
Using “firewall rules” configuration introduce in X7.2 release, you may restrict service on specific network interface (allow/deny base configuration on IP address and port range).
Important that cluster configuration must use Ethernet 1 IP address.
Clustering peer communication use Ethernet 1 IP address between VCSs and also alternative IP address included in ACF will use it.
Based on network diagram snapshot seem VCS-E are connecting different network directly not connecting same switch.
If this is correct, then cluster communication will go through firewall/internet which is fine but delay must be within 30 ms.
09-19-2012 07:39 PM
VCS can be managed from both network interfaces.
Using “firewall rules” configuration introduce in X7.2 release, you may restrict service on specific network interface (allow/deny base configuration on IP address and port range).
Important that cluster configuration must use Ethernet 1 IP address.
Clustering peer communication use Ethernet 1 IP address between VCSs and also alternative IP address included in ACF will use it.
Based on network diagram snapshot seem VCS-E are connecting different network directly not connecting same switch.
If this is correct, then cluster communication will go through firewall/internet which is fine but delay must be within 30 ms.
09-20-2012 01:31 PM
Thank you very much Tomonori.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide