Increasing numbers of IDCs (Internet Data Centers) are attempting to improve corporate security by using the address translation function of NAT routers to hide internal network addresses in customer environments so that these addresses are not disclosed to the public.
In environments that use NAT routers like this, internal networks, which are hidden by the address translation function, need to be administered from a network on the other side of the NAT router.
Configurations that use NAT
NAT has both a static translation function that maintains static correspondence between hidden IP addresses and converted IP addresses, and a dynamic translation function that associates hidden IP addresses dynamically with converted IP addresses.
Systemwalker Operation Manager only supports 1:1 static address translation.
With 1:1 static address translation, 1:1 static correspondence is maintained between the IP addresses hidden by NAT and the IP addresses converted by the address translation function.
Systemwalker Operation Manager can manage networks and jobs in the following basic NAT environments.
NAT configuration 1 (Address translation where addresses in the NAT environment are hidden)
If Server 1 has IP address 1 and Server 2 (in a NAT environment) has IP address 2, the address translation function of the NAT router hides IP address 2 of Server 2 in the NAT environment from Server 1 so that, from the viewpoint of Server 1, the IP address of Server 2 appears as IP address 2', which is actually the result of conversion by the address translation function.
However, the IP address of Server 1 is not hidden from Server 2 and its clients in the NAT environment so that, from the viewpoint of Server 2, the IP address of Server 1 appears as IP address 1.
NAT configuration 2 (Address translation where the addresses of both the NAT environment and Server 1 are hidden)
If Server 1 has IP address 1 and Server 2 (in a NAT environment) has IP address 2, the address translation function of the NAT router hides IP address 2 of Server 2 in the NAT environment from Server 1 so that, from the viewpoint of Server 1, the IP address of Server 2 appears as IP address 2', which is actually the result of conversion by the address translation function.
In addition, the address translation function also hides IP address 1 of Server 1 from Server 2 and its clients in the NAT environment so that, from the viewpoint of Server 2, the IP address of Server 1 appears as IP address 1', which is actually the result of conversion by the address translation function.
Operation in NAT environments
When Systemwalker Operation Manager is used in a NAT environment, Systemwalker Operation Manager servers can be monitored and operated from a web browser, as shown in the following configuration diagram. In this configuration, each Systemwalker Operation Manager server in the NAT environment should also be a Web server.
Note
Jobs should be registered from a Systemwalker Operation Manager client inside each LAN.
For information about the functions available from the web browser, refer to "2.15 Using Systemwalker from a Web Browser". For more information about the environment definitions required for monitoring, refer to the Systemwalker Operation Manager Installation Guide.
