DMZ 🚀

The DMZ section is the basic interface for configuring the DMZ Driver, gateways, servers, and links within Data Mover Smart.

The DMZ section requires a specific license.

At least a Cluster must exist. If not, the Create Cluster option will appear on the DMZ page.

DMZ Driver configuration

To set up the DMZ Driver, click the DMZ Driver button located at the top-left corner and in the DMZ Driver window fill in these fields:

Bind address: IP address through which Data Mover Smart is accessible from the external.
Local address: (Default value: 0.0.0.0). Local IP address the DMZ Driver uses to bind incoming and outgoing connections.
Reserved ports range: TCP-IP port ranges to be used to open tunnels between DMZ Driver and DMZ Gateway. For each incoming/outgoing connection, one port should be reserved (2 ports are needed for FTP protocol). Ensure these ports are open on both the DMZ and Data Mover Smart. The ports must be open from Data Mover Smart to Data Mover Smart Gateway. See the details on the Data Mover Smart Gateway port configuration page.
Socket timeout: (Default value: 30 seconds). Timeout duration (in seconds) for read/write/connect operations on the DMZ Driver–DMZ Gateway tunnel. Use -1 for an infinite timeout.
Idle timeout: (Default value: 90 seconds). Duration (in seconds) to keep the connection alive between the DMZ Driver and DMZ Gateway.
Reconnection interval: (Default value: 30 seconds). Time (in seconds) before the DMZ Driver attempts to reconnect to the DMZ Gateway after a disconnection,
Reconnection attempts: (Default value: -1). Number of reconnection attempts before considering the DMZ Gateway unreachable. Use -1 for unlimited attempts.

Click the Save button to apply and confirm the DMZ Driver settings.

Once the DMZ Driver is set up, you can create Gateways that will appear in the corresponding drop-down list.

Choose the appropriate cluster from the drop-down menu. To configure a Gateway, click the + button below the Gateway panel and fill in the fields:

Name: enter a unique name for the Gateway.
Description: optionally, provide a brief description to identify the Gateway’s purpose or role.
Internal address: specify the internal IP address used by the Gateway.
Internal port: enter the port number for internal communication. This port must be open from Data Mover Smart to Data Mover Smart Gateway. See the details on the Data Mover Smart Gateway port configuration page.
External address: provide the external IP address through which the Gateway is accessible.

Once all fields are completed, the Save button will become active. Click it to confirm and save the Gateway settings.

On the right side of the screen, you’ll find a list of all Servers and Links currently configured in the DMZ.

This section displays the servers where the DMZ configuration is already active.

Whenever the DMZ toggle is enabled during the creation or editing of a server, the server will automatically appear in this list.

To add a DMZ configuration to an existing server from the DMZ page, follow these steps:

Note: Each server can be selected only once.

In the Mode dropdown, select Port Forwarding.
Enter the external port number used to reach this server via the Data Mover Smart gateway. This port must be open on the Data Mover Smart gateway to the Internet.
Once all fields are filled in, the Save button will become active. Click it to confirm and apply the settings.