We have a use case where we want to connect many endpoint devices which is on the network behind firewall.
I am looking for some strategy to achieve this and have some questions on below .
1) If we attache additional NIC on PAM
one will serve internal traffic and another will server traffic for network behind firewall
How the user will be redirected to the device behind firewall ?
How would be make sure that two networks are still isolated, do we have something to control ?
We dont want PAM to become router or jump host for two different networks.
Example.Lets say we have two devicesInternal - 10.10.x.x
External - 212.192.x.x
When the user tries to connect 212.192.x.x device from the PAM console, how the user will be routed to the NIC connected with Network behind firewall ?
When the user tries to connect 10.10.x.x device from the PAM console, how the user will be routed to the NIC connted to Internal network.
Hello Yogesh, You do this by defining additional routes on the Configuration > Network > Additional Routes page. Please also see the online documentation at https://docops.ca.com/ca-privileged-access-manager/3-2/EN/implementing/configure-your-server/configure-network-settings/additional-routes.