WebSphere Application Server and firewalls
JonMarshall 1000009QM4 Visits (8094)
Does WAS allow you to run nodes of a cell across a firewall?
Well it uses the network to communicate between it's constituent parts, so as long as you open the appropriate ports, yes, WAS can run across a firewall. Put more
"WAS requires a network connection between all WAS components . If there is a firewall along that connection it should be transparent to WAS and as such not effect WAS operation. The Support Center will accept WAS usage and defect related service requests for WAS even when there is a firewall implemented between WAS components . During trouble shooting process, IBM may require that the problem be recreated without a firewall being in the flow between WAS DM and its Agents to check if the problem is related to the implemented firewall or not.
I think it worth pointing out that since a WAS-ND cell is a single trust domain, placement of firewalls between WAS nodes provides NO additional security protection, since the firewall must be configured to allow WAS inter-node communication so an breach on one node, compromises all nodes.
Want to know what those ports are? The Info Center documents them nicely for you