Test environment

Edit online

Our Tivoli WebSEAL test environment consisted of an IBM System z and an IBM System x server.

Figure 1. WebSEAL test environment
seal16

Figure 1 shows only the setup of the WebSEAL environment.

The System z® contained a z/VM® LPAR with five guests and a z/OS® LPAR. The network was split into three parts:
  • The System x and the System z systems were connected in the unsecured external zone through a 1 Gb Ethernet connection. The System x system contained the WebSEAL workload generator, which generated the workload.
  • The DMZ contained one guest with the WebSEAL Proxy Server protected from the external zone with a firewall (Firewall 2) running in a separate guest.
  • The trusted internal zone is protected with another guest with a more restrictive firewall (Firewall 1) and contains one guest for each of the following servers:
    • The Tivoli® Access Manager / IBM® Tivoli Directory Service server and the DB2® client
    • The DB2 UDB database server
  • The z/OS LPAR is connected to the z/VM LPAR through a HiperSockets connection and contained the WebSphere® Application Server.
  • The network zones on z/VM were implemented as HiperSockets guest LANs.
See the Red Paper IBM Tivoli Access Manager for e-business for general information on the software products used in this test. The red paper can be found at: 
https://www.redbooks.ibm.com/abstracts/sg247207.html