...
- DPOD cell manager and cell members must be with the same version (minimum version is v1.0.9.0).
- DPOD cell manager can be installed in both Appliance Mode or Non-Appliance Mode with Medium Load architecture type, as detailed in the Hardware and Software Requirements. The manager server can be both virtual or physical.
- DPOD cell member (FCM) should be installed in Non-appliance Mode with High_20dv with High Load architecture type, as detailed in the Hardware and Software Requirements.
- Each cell component (manager / FCM) should have two network interfaces:
- External interface - for DPOD users to access the Web Console and for communication between DPOD and Monitored Gateways.
- Internal interface - for internal DPOD components inter-communication (should be a 10Gb Ethernet interface).
- Network ports should be opened in the network firewall as detailed in table 1 below:
...
- below:
From | To | Ports (Defaults) | Protocol | Usage |
|---|---|---|---|---|
DPOD Cell Manager |
Each Monitored Device | 5550 (TCP) | HTTP/S | Monitored |
device administration management interface |
DPOD Cell Manager |
| DNS Server | TCP and UDP 53 | DNS | DNS services. Static IP address may be used. | |
DPOD Cell Manager |
NTP Server | 123 (UDP) | NTP | Time synchronization | |
DPOD Cell Manager |
Organizational mail server | 25 (TCP) | SMTP | Send reports by email | |
DPOD Cell Manager |
LDAP | TCP 389 / 636 (SSL). TCP 3268 / 3269 (SSL) | LDAP | Authentication & authorization. Can be over SSL. | |
| DPOD Cell Manager |
| Each DPOD Cell Member |
| 9300-9305 (TCP) |
| ElasticSearch |
| ElasticSearch Communication (data + management) | ||||
NTP Server | Cell Manager DPOD Appliance | 123 (UDP) | NTP | Time synchronization |
Each Monitored Device | DPOD Cell Manager |
60000-60003 (TCP) | TCP | SYSLOG Data | |
Each Monitored Device | DPOD Cell Manager |
60020-60023 (TCP) | HTTP/S | WS-M Payloads | |
FROM Users IPs | DPOD Cell Manager |
443 (TCP) | HTTP/S | Access to with IBM DataPower Operations Dashboard Console | |
FROM Admins IPs | DPOD Cell Manager |
22 (TCP) | TCP | SSH | |
| Cell Member DPOD Appliance | DPOD Cell Manager |
| 9200, 9300-9400 | Elasticsearch | Elasticsearch Communication (data + management) | ||
Cell Member DPOD Appliance | DNS Server | TCP and UDP 53 | DNS | DNS services |
Cell Member DPOD Appliance | NTP Server | 123 (UDP) | NTP | Time synchronization |
NTP Server | Each DPOD Cell Member |
123 (UDP) | NTP | Time synchronization | |
Each Monitored Device | Each DPOD Cell Member |
60000-60003 (TCP) | TCP | SYSLOG Data | |
Each Monitored Device | Each DPOD Cell Member |
60020-60023 (TCP) | HTTP/S | WS-M Payloads | |
FROM Admins IPs | Each DPOD Cell Member |
22 (TCP) | TCP | SSH |
Manager Installation
DPOD cell manager can be both "Appliance Mode" or "Non Appliance Mode" installation with "medium" architecture type as detailed in the Hardware and Software Requirements. The manager server can be both virtual or physical.
...