Network Diagram for Internet-Based Servers - Scenario 3 with SQL Server Replica

Updated: March 1, 2009

Applies To: System Center Configuration Manager 2007, System Center Configuration Manager 2007 R2, System Center Configuration Manager 2007 R3, System Center Configuration Manager 2007 SP1, System Center Configuration Manager 2007 SP2

This network diagram shows server placement and firewall configuration for the following operational scenario for Internet-based client management in Configuration Manager 2007:

  • Scenario 3: A Configuration Manager 2007 site that supports both Internet clients and intranet clients and spans the perimeter network and intranet. All the Internet-based site systems are in the perimeter network and accept connections for clients connecting over the Internet. There is a second management point (and second software update point and fallback status point, as well as additional distribution points) and other site systems that are in the intranet for clients connecting on the intranet. The management point that supports Internet-based client communicates with a SQL server replica in the perimeter network.

To avoid in-bound connections from the Internet-based software update point to the active software update point, use the export and import method of synchronizing the software updates as described in the following topic: How to Synchronize Updates Using Export and Import.

For information about the port requirements, see Determine the Ports Required for Internet-Based Client Management.

Internet-based diagram: Scenario 3b
For additional information relating to the installation requirements for the site systems, see the section “Installation Requirements for Internet-Based Site Systems” in Ports Used by Configuration Manager.

See Also

For additional information, see Configuration Manager 2007 Information and Support.
To contact the documentation team, email

Community Additions