Avatar

Correct answer by
Community Advisor

Hello @Deb_Tripathy, we have added restriction on the firewalls rules there were no restrictions on sysconfig (no idea what is that anyway) nor security zones as I was told by the network technician  that you always get the internal IP of web server that is infront of application server, if you have one in place, so the IP will be same for all incoming traffic and security zones then will not work. If you are getting IP address of actual user then add the restrictions on web application itself. if not set firewall rules for certain URLs that can be accessed only by certain range of IPs?

In our setup frontal and application is different server with different URLs hosted on different VMs just with shared DB. All frontal requests to login page are blocked by firewall so customers can access unsub pages and other web apps that do not require password. On the application server there is not restriction apart that is not accessible from public.

 

Will this clear some of your questions?

 

Marcel

 

Marcel

View solution in original post