Network Router in Cloud - Remote CommServe

The Remote CommServe is one of the two CommServes which will communicate using network router in the perimeter network. Perform the following on the Remote CommServe:

  1. Create Pseudo Clients
  2. Configure Firewalls

Creating Pseudo Clients

  1. From the CommCell Console of the Remote CommServe, right click Client Computers and select New Client.

    Select Windows from the Select New Client list on the Add New Client dialog box.

    Click OK.

  2. Enter the Client Name for the Proxy computer.

    Enter the Host Name for the Proxy computer.

    Click OK.

    A pseudo client for the Proxy computer will be created.

  3. From the CommCell Console of the Remote CommServe, right click Client Computers and select New Client.

    Select Windows from the Select New Client list on the Add New Client dialog box.

    Click OK.

  4. Enter the Client Name for the Data Center CommServe.

    After the setup is complete, the Remote CommServe will communicate with Datacenter CommServe using proxy computer.

    Enter the Host Name for the DataCenter CommServe.

    Click OK.

    A pseudo client for the DataCenter CommServe will be created.

Configuring Firewalls

After creating the pseudo clients, configure the firewalls between each pseudo client and the Remote CommServe.

  1. From the CommCell Console of the Remote CommServe, expand the Client Computers node.

    Right-click the <Proxy Client> and select Properties.

  2. Click Firewall Configuration tab.

    Select the Configure Firewall Settings check box.

    Click Add on the Incoming Connections tab.

  3. Select <Data Center CommServe>

    Select RESTRICTED.

    Click OK.

    Click Add on the Incoming Connections tab.

  4. Select <Remote CommServe>

    Select RESTRICTED.

    Click OK.

  5. Click Incoming Connections tab.

    Select the Listen for tunnel connections on port check box.

    Enter the port number that will be used for communication between Proxy client and Data Center CommServe.

  6. Click the Options tab.

    Select the This computer is in DMZ and will work as a proxy check box.

    If required, change the following default values:

    • Keep Alive Interval, Seconds: 300
    • Tunnel Init interval, Seconds: 1
    • Incoming Tunnel Protocol: Accept HTTP and HTTPS

    Click OK.

  7. From the CommCell Console of the Data Center CommServe, expand the Client Computers node.

    Right-click the <Remote CommServe> and select Properties.

  8. Click Firewall Configuration tab.

    Select the Configure Firewall Settings check box.

    Click Add on the Incoming Connections tab.

  9. Select <Proxy Client>

    Select BLOCKED.

    Click OK.

    Click Add on the Incoming Connections tab.

  10. Select <Data Center CommServe>

    Select BLOCKED.

    Click OK.

  11. Click the Outgoing Routes tab.

    Click Add.

  12. Select <Proxy Client> from the Remote Group/ Client list.

    Click OK.

    Click Add on the Outgoing Routes tab.

  13. Select <Data Center CommServe> from the Remote Group/ Client list.

    Select Via Proxy.

    Select <Proxy Client> from the Remote Proxy list.

    Click OK.

  14. From the CommCell Console of the Data Center CommServe, expand the Client Computers node.

    Right-click the <Data Center CommServe> and select Properties.

  15. Click Firewall Configuration tab.

    Select the Configure Firewall Settings check box.

    Click Add on the Incoming Connections tab.

  16. Select <Proxy Client>

    Select BLOCKED.

    Click OK.

    Click Add on the Incoming Connections tab.

  17. Select <Remote CommServe>

    Select BLOCKED.

    Click OK.

  18. Click the Outgoing Routes tab.

    Click Add.

  19. Select <Proxy Client> from the Remote Group/ Client list.

    Click OK.

    Click Add on the Outgoing Routes tab.

  20. Select <Remote CommServe> from the Remote Group/ Client list.

    Select Via Proxy.

    Select <Proxy Client> from the Remote Proxy list.

    Click OK.

  21. From the CommCell Console of the Remote CommServe, right-click the <Remote CommServe Client> and select All Tasks | Push Firewall Configuration.

Congratulations -  You have successfully setup SnapProtect communication between the Remote CommServe and the DataCenter CommServe using a proxy computer.