4.4.15 NAT Environment Configuration
If you are using JP1/IT Desktop Management 2 in a NAT environment, consider installing a management relay server or a relay system in the internal network. If there are many devices to be managed, you can reduce the network load related to the amount of external network traffic and the number of connections.
- Organization of this subsection
(1) Internal network with Management Relay Server installed configuration
This section describes internal network with Management Relay Server installed configuration.
-
By setting the NAT device (hereafter, NAT device A) of the same network as the management server (hereafter, management network), statically allocate the internal IP address of the management server to the IP address of the external network.
-
If you need to perform operation (such as message notification, update device details, etc.) on the managed device under the management relay servers, perform the operation from the management screen of the management relay server.
-
You cannot connect to the management relay server from the Remote Install Manager of the management network.
Settings for Internal network with Management Relay Server installed
- The Management Relay Server Setup
-
Set the following setting values for the management relay servers. For details on setting up the management relay server, see the procedure for setting up the management relay server in the JP1 / IT Desktop Management 2 Configuration Guide.
Setting item
Setting value
Higher connection destination
External IP address of the management server, or Host name resolved to the external IP address of the management server
- Agent Configuration of Management relay server
-
Set the agent configuration assigned to the managed device on the management relay server management screen to the following setting value. For details about the agent configuration, see the description of managing agent configurations in the JP1/IT Desktop Management 2 Administration Guide.
Setting item
Setting value
Management server
IP address of the management relay server, or Host name resolved to the IP address of the management relay server
Higher System for Distribution that Uses Remote Install Manager
IP address of the management relay server, or Host name resolved to the IP address of the management relay server
Example of settings for Internal network with Management Relay Server installed
IP address settings
|
Setting item |
Setting value |
|---|---|
|
Management server IP address (External Network) |
10.10.10.10 |
|
Management server IP address (Internal Network) |
192.168.10.10 |
|
Management relay server IP address (Internal Network) |
192.168.20.10 |
Management Relay Server Setup
|
Setting item |
Setting value |
|---|---|
|
Higher connection destination |
10.10.10.10 |
Management Relay Server Agent Configuration
|
Setting item |
Setting value |
|---|---|
|
Management server |
192.168.20.10 |
|
Higher System for Distribution that Uses Remote Install Manager |
192.168.20.10 |
![[Figure]](GRAPHICS/ZU040411.GIF)
(2) Internal network with Relay System installed configuration
This section describes internal network with Relay System installed configuration.
-
By setting the NAT device (hereafter, NAT device A) of the same network as the management server (hereafter, management network), statically allocate the internal IP address of the management server to the IP address of the external network.
-
Operation (such as message notification, update device details, etc.) or network control to the managed device on a different network with the management network is performed on polling timing.
-
Agentless management of managed device on different network with management network can not be performed.
-
For notification of inventory information etc., direct communication occurs between the managed device and the management server. To reduce the communication load, consider installing a management relay server.
Settings for internal network with Relay System installed
- Agent Configuration of Management relay server
-
Set the agent configuration assigned to the managed device on the management relay server management screen to the following setting value. For details about the agent configuration, see the description of managing agent configurations in the JP1/IT Desktop Management 2 Administration Guide.
Setting item
Setting value
Management server
External IP address of the management server, or Host name resolved to the External IP address of the management server
Higher System for Distribution that Uses Remote Install Manager
IP address or Host name of Relay System
- Relay System Setup
-
Set the following setting values for the Relay System. For details on setting up the Relay System, see the procedure for setting up the Relay System in the JP1 / IT Desktop Management 2 Configuration Guide.
Setting item
Setting value
Communicate with the higher system
Check
Host Name or IP Address:
External IP address of the management server, or Host name resolved to the External IP address of the management server
Example of settings for Internal network with Relay System installed
IP address setting
|
Setting item |
Setting value |
|---|---|
|
Management server IP address (External Network) |
10.10.10.10 |
|
Management server IP address (Internal Network) |
192.168.10.10 |
|
Relay IP address (Internal Network) |
192.168.20.10 |
Agent configuration of Management Server
|
Setting item |
Setting value |
|---|---|
|
Management Server |
10.10.10.10 |
|
Higher System for Distribution that Uses Remote Install Manager |
192.168.20.10 |
Relay System Setup
|
Setting item |
Setting value |
|---|---|
|
Communicate with the higher system |
Check |
|
Host Name or IP Address: |
10.10.10.10 |
![[Figure]](GRAPHICS/ZU040412.GIF)
(3) Internal network without Management Relay Server or Relay System installed configuration
This section describes internal network without Management Relay Server or Relay System installed configuration.
-
By setting the NAT device (hereafter, NAT device A) of the same network as the management server (hereafter, management network), statically allocate the internal IP address of the management server to the IP address of the external network.
-
Operation (such as message notification, update device details, etc.), network control, or distribution to the managed device on a different network with the management network is performed on polling timing.
-
Agentless management of managed device on different network with management network can not be performed.
-
Direct communication occurs between the managed device and the management server. To reduce the communication load, consider installing a management relay server or relay system.
Settings for Internal network without Management Relay Server or Relay System installed
- Agent configuration of Management Server
-
Set the agent configuration assigned to the managed device on the management server management screen to the following setting value. For details about the agent configuration, see the description of managing agent configurations in the JP1/IT Desktop Management 2 Administration Guide.
Setting item
Setting value
Management server
External IP address of the management server, or Host name resolved to the External IP address of the management server
Higher System for Distribution that Uses Remote Install Manager
External IP address of the management server, or Host name resolved to the External IP address of the management server
Example of settings for Internal network without Management Relay Server or Relay System installed
IP address setting
|
Setting item |
Setting value |
|---|---|
|
Management server IP address (External Network) |
10.10.10.10 |
|
Management server IP address (Internal Network) |
192.168.10.10 |
Agent configuration of Management Server
|
Setting item |
Setting value |
|---|---|
|
Management Server |
10.10.10.10 |
|
Higher System for Distribution that Uses Remote Install Manager |
10.10.10.10 |
![[Figure]](GRAPHICS/ZU040413.GIF)
(4) NAT Environment Precautions
When operating remote control in NAT environment, the precautions are as follows:
-
If you cannot connect from the controller's device to the computer to be controlled, but the controller's device can be connected from the computer to be controlled, execute the connection request to the controller from the computer to be controlled.
When operating remote control in NAT environment, the precautions are as follows:
-
In environments with multiple networks, there may be multiple devices with the same IP address on each network. In such environment, if the network connection check format is set to IP address, it might cause unintentional interruption to the connection of the device used for the business operation, leading to trouble. It is recommended that you set the network connection check format to MAC address or MAC address + IP address.