DMZ vs. VPN - Intergraph Smart Engineering Manager - 12 - Help - Hexagon

Intergraph Smart Engineering Manager Help

Language
English
Product
Intergraph Smart Engineering Manager
Search by Category
Help
Smart Engineering Manager Version
12

The following questions should be considered before determining which networking environment you will use for creating and maintaining a database link between sites.

Will the Smart P&ID connected Workshare collaboration need share-level access to update or synchronize plant and reference data files?

  • If share-level access is used to update or synchronize plant and reference data for a company-internal plant between two or more company locations, then a corporate WAN connection for this process is recommended.

  • If the connected Workshare collaboration is between different companies, a DMZ environment is a better solution. If a DMZ solution is used, performing a manual update of the plant and reference data will be required as share-level access in a DMZ environment is not recommended.

What are the corporate firewall policies for customers or vendors that need access to data inside your corporate LAN?

  • If customer or vendor access is not a possible solution for access to data inside your corporate firewall, a DMZ environment is the recommended solution.

What if I have a secure VPN established between my location and the satellite location for a connected Workshare collaboration?

  • If this environment is available, then we recommend share-level access for project and reference data updates and synchronization.

What ports need to be open for database access in a DMZ environment?

  • Port 1521 needs to be opened between the database servers at each location if the databases are using USE_SHARED_SOCKET to lock Oracle into using the single port for operation.

  • If USE_SHARED_SOCKET is not used, then all ports between the two locations must be open because Oracle uses random ports to communicate after the initial connection.

  • If both locations use Oracle Enterprise Edition, you can use Connection Manager to handle port connection between the databases at each location.