When reviewing the options available to connect a DataMiner System to the cloud, ​​it is not clear to me the difference between the options Connecting to the cloud with a DMZ setup and Connecting to the cloud via proxy server.
Could someone explain the difference between these architectures and give some use cases for each option?
Thanks in advance.
If you are working with a proxy, then the DxM process of DataMiner resides on one of the DMA nodes, and all traffic goes from the DxM through the third party proxy server towards the internet to the DataMiner Cloud Platform.
If you are working with a DMZ setup, you are taking the DxM and host that seperately on a machine in the DMZ, so the traffic goes from the DMA to the DxM in the DMZ, and from there to the DataMiner Cloud Platform.
Note that the DMZ setup is considered the most secure option because all internet traffic goes through the DMZ, meaning an attack through said cloud connection would limit the damage to only the DMZ server, which should have very limited permission already by design. While if you’re using the proxy server, the same breach would immediately result in access to the DataMiner server (OS).
Thanks for clarifying.