Network Configuration for Workgroup PDM Viewer in a Perimeter Network
The network configuration shows a perimeter network server set up on a perimeter subnet and its communication to the internal and external networks.
The perimeter network server communicates to the LAN through an internal firewall. It communicates to the external network through an external firewall, a router, and a cluster of load balancers.
The Internet Explorer client connects to the Workgroup PDM Viewer/IIS server by way of port 80 (or 443 if configured to use SSL). The Workgroup PDM Viewer then connects to the Vault server using ports 30000 or 40000. The Vault server sends the requested information back to the Workgroup PDM Viewer, which then feeds the information back to the Internet Explorer client.
The perimeter network Web server has two IP addresses:
The Web server in the perimeter network is located behind a cluster of load balancers. Although you can get directly to the Web server for administrative tasks, all Web services traffic to the servers in the perimeter network is processed through the load balancers.
The load balancers translate the server hardware IP address to a virtual IP (VIP) on the network leg that is exposed to the public. If you browse to either the VIP or the Web server URL while attached to the network, you can see the site.
The external firewall translates the load balancer VIP to a public, route-able address.