HP StorageWorks XP Command View Advanced Edition software Device Manager server installation and configuration guide (web version) (T1780-96078, March 2008)

Device Manager network configuration

CAUTION: When Physical View of XP24000/XP20000 or XP12000/XP10000/SVS200, or XP

Remote Web Console of XP1024/XP128 is launched, Java Web Start and the web browser on the

web client machine directly communicate with the storage subsystem. For this reason, if the web

client machine and the storage subsystem exist on different networks, you must set up the

networks so that the machine and the storage subsystem can communicate directly with each

other.

Figure 2-3 illustrates a separate management LAN with firewalled devices under management.

Figure 2-3 Second-most secure configuration: separate management LAN with firewalled devices

2-2-3 Third-most secure configuration: Dual-homed

management servers with separate management LAN

In this configuration, the management servers themselves act as the intersection point between the

management LAN and production LAN. The server running the Device Manager or other

management applications is dual-homed. One NIC is attached to the management LAN along with

the managed devices. The second NIC is attached to a production LAN along with the management

clients (for example, the Device Manager GUI). Because the management application servers

actually act as the gateway between the production LAN and the management LAN, and there is no

additional firewall, you must be very sure that the server itself will not route traffic between the two

networks.

This configuration is the third most secure, and is more flexible than either the most or second-most

secure configurations. While it protects the devices under management, it does not protect the

management application servers themselves. Therefore, all management application servers should