JSS Firewall Policies Setting for APNs.

southkorea
New Contributor

Hi,

A customer will set up their two JSS servers from internal network to DMZ, they will also have a load balancer (F5) before two JSS Servers in DMZ, so the Infosec team asks the following question:

Could they only open the network access policies between the F5 and APNs except the network access polices between JSS Servers and APNs?

Any feedback will be appreciated.

Nan

2 REPLIES 2

Steven_Xu
Contributor
Contributor

Load balancer is for the connections initiated by remote clients, the APNs traffic is initiated by Jamf Pro Servers. For the Firewall, if the APNs traffic's initiation source IP is JSS server's local IP, then they should open network access for JSS servers. 

Thanks Steven.