MID Sever

Mansor2
Tera Contributor

‎01-30-2024 09:41 PM

Hello all,

 

My customer is looking at having two mid servers, with one deployed in the DMZ (Demilitarized Zone) and the other in the LAN (Local Area Network), I believe it's  a common practice in IT and network architecture to enhance security and improve performance. The mid server acts as a bridge between external systems, such as cloud-based or third-party services, and the internal infrastructure of an organization.

 

Can serviceNow support 2 MID servers like in the attached diagram? please help with direction.

 

Preview file
59 KB
0 Helpfuls
  • 1,892 Views
4 REPLIES 4

Niklas Peterson
Mega Sage
Mega Sage

‎01-31-2024 05:47 AM

Hi,

 

The simple answer is yes. But then it all comes down to how you want to utilize the MID servers. You use the MID servers to access resources behind the firewall that the ServiceNow instance in the cloud will not be able to access directly. Put the MID servers close to the resources they should connect to will increase performance. 

 

Regards,
Niklas

0 Helpfuls

Mansor2
Tera Contributor

‎01-31-2024 11:18 PM

HI Niklas, 

 

Thanks for the reply. However, my customer is looking at placing 2 MID servers 1 in DMZ and 1 in their LAN.  They don't want to expose the LAN to Internet; thus, they want to use 2 to stay within compliance. Question is, can the 2 MID servers between the LAN and DMZ, can they communicate to each other like relay or something? You can check my attachment if it may help. 

Preview file
59 KB
Preview file
66 KB
0 Helpfuls

Niklas Peterson
Mega Sage
Mega Sage
In response to Mansor2

‎01-31-2024 11:38 PM

Hi,

No, I don't think that will be possible. The MID server is the one that always intiates the communication with the ServiceNow instance. You don't have to open up any inbound ports through the firewall and expose it. It's only outbound on port 443. More or less just like any other client accessing the ServiceNow instance.

 

Regards,
Niklas

Rahul Priyadars
Giga Sage
Giga Sage
In response to Mansor2

‎02-01-2024 12:09 AM

 can the 2 MID servers between the LAN and DMZ, can they communicate to each other like relay or something--> Mid Server they do not Interact with each Other. They Communicate with Service Now Instance on PORT 443. So when you are putting Mid Server in LAN then i think security team will more questions as on the Given mid Server Internet Needs to Open too.

 

Regards

RP

0 Helpfuls