Loading...

Firewall Using Direct Connections

A direct connection (with port restrictions) is a firewall setup where at least one computer in a pair of communicating computers can establish a one-to-one connection towards the other on specific ports.

Note: A direct connection route does not include a SnapProtect proxy or an intermediate port-forwarding gateway.

The following are direct connection routes that you can configure in your CommCell environment:

  • One-Way firewall where the client initiates connections with the CommServe computer.

  • One-Way firewall where the CommServe computer initiates connections with the client.

  • Two-Way Firewall, where both the client and CommServe computers initiate connections.

Determine the Firewall Configuration Method to Use

You can set up direct connection routes by using one of the following configuration methods:

  • Preferred Method: Using a predefined firewall topology

    If you want to simplify the amount of firewall configuration steps, you can use the predefined firewall topology for direct connections. This is useful if the connection is client group-to-client group.

    For more information, see Direct Connections Using Predefined Firewall Topologies.

  • Alternative Method: Using the basic or advanced firewall settings

    If the predefined firewall topology does not meet your needs, you can use the basic or advanced firewall settings to set up direct connections. The basic firewall setting is only supported for one-way firewall scenarios, where the client initiates connections with the CommServe computer.

    For more information, see Direct Connections Using Basic or Advanced Firewall Settings.