This topic has 1 reply, 2 voices, and was last updated June 15, 2017 by Michael K.

CSP (DraaS Provider) Firewall Lock Down

Shanil H
May 26, 2017 04:13:28 PM

Hi All,

I wanted to ask if any CSP using DRaaS have attempted to lock down VPN Connectivity between customer sites successfully when using Port ranges from 9802 and up.

I have managed to get this to work one a small subset of clients, but if we have 100 plus customers if the port range needs to be the same on all firewalls?

Cloud documentation suggests using a cloud port range but doest really explain how this port range is scalable and what best practices to follow when determining on how the port range should be sized.

ref.

http://s3.amazonaws.com/zertodownload_docs/Latest/Zerto%20Virtual%20Replication%20Zerto%20Cloud%20Manager%20%28ZCM%29%20Online%20Help/index.html#page/ZertoCloudManagerInstallation%2FInstall_ZCM.1.7.html%23

Michael K
June 15, 2017 03:43:18 PM

Hi Shanil, could you please clarify why you would want to close these ports? I am not aware of any other related services that run on these ports except for Zerto.

You must be logged in to create new topics. Click here to login