Two polling engines in different subnets?

kyle05

I have two subnets that are separated with a firewall for security reasons. I'll call them subnet A and subnet B. Both subnets have nodes I would like to monitor. Currently I'm using a single polling engine to monitor nodes in subnet A, but I would like to monitor nodes in subnet B as well. My firewall has all ports closed between subnets by default, so I have to open a port anytime I need communication between the subnets. I want to minimize how many ports are open, so I don't want to open port 17778 for the agent on every node in subnet B. Instead I would like to have an additional polling engine in subnet B that all nodes in subnet B are monitored with. Then I would only needs ports open for the polling engine in subnet B to communicate to subnet A. I would install the additional polling engine on a server in subnet B.

I read this article (Port requirements for all SolarWinds products - SolarWinds Worldwide, LLC. Help and Support ) and I think I just need ports 1433, 1801, 5671, and 17777 open between the two subnets. I'm fairly certain if I open those ports for the polling engine in subnet B, then it could sync with the polling engine in subnet A.

Is this kind of setup possible? Or am I missing something? I would appreciate any help or suggestions.

spyfly

kyle05​ you got it, you only need to open up those ports to allow your additional poller to talk to your primary Orion poller, using this method makes it so you don't have to have tons of ports for WMI when collecting data behind a firewall. Another option is to use the orion agent if you have a small set of servers behind the firewall.