Is this possible. I would like to patch several servers currently residing in the DMZ. Can this be done using my current BigFix infrastructure?
As long as your servers have the ability to respond to a relay either within the DMZ or within your inner network, you can treat the DMZ like any other machine
I have no trouble patching from our DMZ.
The firewall has rules to allow the Relays to communicate with the BigFix server. The rest of our servers cannot communicate with the server and must use the Relays.
I’m wondering how can I install and configure a client on a server in the DMZ to talk to a relay in the DMZ.
Perhaps these technotes will be helpful:
How can TEM be configured to manage computers in a DMZ?: http://www-01.ibm.com/support/docview.wss?uid=swg21505929
Assigning a Relay at Client Installation Time: http://www.ibm.com/support/knowledgecenter/SSKLLW_9.2.1/com.ibm.tivoli.tem.doc_9.2/Platform/Adm/c_assign_relay_at_installation_t.html
–Mark
1 Like