For security reason there is no way to open a port from the DMZ to the internal network (LAN)
Have introscope apm agent an standard solution for DMZ environment?
I read about installing EM collector inside the DMZ, so the MOM is inside the LAN
Collector need to send data to the MOM
Can the MON just get the data from the collector? This way the DMZ only have incoming connection..
Thanks for any suggestions
By default the agent connects to the MOM to get a Collector to connect to. You can tunnel agent connections to the MOM and Collector over http or https if that makes things easier. You can put a Collector EM in your DMZ and hardcode the Collector in your agent profiles. The Collector EM however also needs to connect to the same APM DB as the MOM. So there needs to be at least this connection from the DMZ to the LAN.