B2B Integration

 View Only
  • 1.  Whether Sterling Secure Proxy can clustered or not ?

    Posted Fri March 03, 2023 06:44 AM

    Hi Team,

    I have a small doubt about whether Sterling Secure Proxy is clustered or not. If it clustered, could we configure it both in an active-active and an active-passive setup.

    Please suggest an appropriate IBM document for clustering of SSP (Sterling Secure Proxy).

    We appreciate your support



    ------------------------------
    Vikas Shivarathri
    ------------------------------

    #B2BIntegration
    #SupplyChain


  • 2.  RE: Whether Sterling Secure Proxy can clustered or not ?

    Posted Sat March 04, 2023 10:48 AM

    Hi,

    You can achieve HA by installing multiple SSP Engines and configure a criss-cross cluster with SFG nodes. 

    Example HA set up is to have - 

                                   2-node SFG Cluster (all active)

                                   2 SSP Engines (all active)

                                   1 SSP CM (active), and you can have an additional SSP-CM for back up.

                                   For a 2 * 2 criss-cross cluster (2 SSP Engines, and 2 SFG nodes), you will need 4 SSP Perimeter Servers.

    Hope that helps.

    Regards,

    Indu



    ------------------------------
    INDUBHARATHI Routhu Lead Consultant
    ------------------------------



  • 3.  RE: Whether Sterling Secure Proxy can clustered or not ?

    Posted Mon March 06, 2023 12:06 AM

    Hi INDUBHARATHI Routhu,

    Thanks for your reply, Is the installation of 4 Perimeter Server required or optional?

    Please suggest an appropriate IBM document for clustering of SSP (Sterling Secure Proxy).

    We appreciate your support



    ------------------------------
    Vikas Shivarathri
    ------------------------------



  • 4.  RE: Whether Sterling Secure Proxy can clustered or not ?

    Posted Mon March 06, 2023 08:53 AM

    Hi,

    SSP PS serves the same purpose as B2Bi PS.

    Without SSP-PS, you will need to open the inbound holes for all your server adapter listening ports at the firewall between DMZ and your Trusted Zone. Hence recommend to include SSP-PS when you use SSP. 

    I will try to look for the documentation that can help you understand further and share here.

    Regards,

    Indu



    ------------------------------
    INDUBHARATHI Routhu Lead Consultant
    ------------------------------