Chapter 2. Implementation planning 75

Figure 2-2 Planning overview for Remote Control Proxy in a TFST environment

1. Install a TRM Server
2. Install Endpoint Gateways in the more secure zone.
3. Deploy the Endpoints in the more secure zone
Phase 1
TMR Server
1
Endpoint GW
2
Endpoint
3
4. Install a Remote Control Server
5. Create a new Policy Region with the RemoteControl managed
resource
6. Create a new Remote Control Tool and configure the Remote
Control policies to force the usage of the Remote Control Proxy.
Phase 2
PR
5
RC Server
4
RC Tool
6
7. Define the communication ports between the Endpoint/Gateway
Proxy and the type of communication (uni or bidirectional) and
configure the Firewall
8. Install the Endpoint Proxy and define it as the Parent
9. Install the Gateway Proxy and define it as the Child
10. Deploy the Endpoints in the less secure zone
Phase 3a
Endpoint Proxy
8
Firewall
7
Gateway Proxy
9
7. Define the communication ports between the Endpoint/Gateway
Proxy and the type of communication (uni or bidirectional) and
configure the Firewall
8. Install the Endpoint Proxy and define it as the Parent
9. Install the TFST Relay(s) and d efine it as the Child and a s the Parent
10. Install the Gateway Proxy and define it as the Child
11. Deploy the Endpoints in the less secure zone
Phase 3b
Relay
TFST
9
Firewall
7
Endpoint
Proxy
810
Gateway
Proxy
11. Define the ports between the RC Proxies and the type of
communication (uni or bidirectional) and configure the Firewall
12. Install the RC Target Proxy on top of the Endpoint or Gateway
Proxy and define it as the Parent or the Child
13. Install the RC Controller Proxy on top of the Endpoint or Gateway
Proxy and define it as the Child or the Parent
Phase 4a
Target Proxy
12
Firewall
11
Controller Proxy
13
12. Define the ports between the RC Proxies and the type of
communication (uni or bidirectional) and configure the Firewall
13. Install the RC Target Proxy on top of the Endpoint or Gateway Proxy
and define it as the Parent or the Child
14. Install a second instance of the TFST Relay and define it as the
Child and as the Parent
15. Install the RC Controller Proxy on top of the Endpoint or Gateway
Proxy and define it as the Child or the Parent
Phase 4b
Relay TFST
14
Firewall
12
Target Proxy
13
Controller Proxy
15
Endpoint
10
Endpoint
11