- Notes, cautions, and warnings
- Revision history
- PowerProtect DDMC Overview
- Planning the DDMC environment
- Getting Started
- Prerequisites
- Downloading DDMC
- Installing DDMC in a VMware environment
- Hyper-V
- DDMC on kernel-based virtual machine
- Deploying DDMC in Amazon Web Services (AWS) using Cloud Formation Template
- DDMC in Azure Marketplace
- Deploying DDMC in Google Cloud Platform (GCP)
- Deploying DDVE systems
- Powering on DDMC
- Logging in and out of DDMC
- Adding (registering) systems to DDMC
- Continuing DDMC configuration
- Understanding RBAC in DDMC
- Viewing DDMC page elements
- Navigating a DDMC page
- Organizing the dashboard
- Organizing managed systems
- Data Centers
- Displaying property information
- Managing replication lag threshold policies
- Working with filters
- Smart Scale
- Monitoring Systems
- How DDMC helps monitor DD systems
- Data retention policy for DDMC
- Space projection algorithm for DDMC
- Performing daily monitoring
- Monitoring capacity
- Checking system capacity and disk space usage
- Measuring physical capacity
- Managing measurement schedules for physical capacity
- Adding or editing physical capacity measurement schedules
- Deleting physical capacity measurement schedules
- Assigning and unassigning measurement schedules for physical capacity
- Measure now for physical capacity
- Viewing physical capacity measurement jobs
- Checking projected system capacity
- Interacting with the Projection Chart
- Checking the System Details lightbox
- Monitoring replication
- Monitoring status with reports
- Managing DD Systems
- Administering Secure Multitenancy
- How DDMC helps with SMT monitoring
- Creating and managing Tenants
- Creating and managing Tenant Units
- Creating a Tenant Unit with the wizard
- Viewing Tenant Unit information and status
- Tenant Unit Details lightbox
- Editing Tenant Unit information
- Deleting Tenant Units and unassigning provisioned storage
- Adding an unmanaged Tenant Unit to a Tenant
- Creating, editing, and generating SMT reports
- Performing Additional Configuration
- Managing network settings
- Configuring network settings
- Configuring network interfaces
- Configuring hosts
- Configuring DNS settings
- Configuring routes
- Working with SNMP
- Managing access to DDMC
- Managing general configuration settings
- Updating DDMC software
- Managing DDMC update packages
- Prerequisite to performing a DDMC software update
- DDMC software update in ESXi
- Performing a DDMC software update in KVM
- Performing a DDMC software update in Hyper-V
- Performing a DDMC software update in AWS
- Performing a DDMC software update in Azure
- Performing a DDMC software update in GCP
- Managing network settings
- Graphics Reference for DDMC
- Command Line Interface for DDMC
Dell PowerProtect DD Management Center (DDMC) 7.9 Installation and Administration Guide
Inbound and outbound proxy host names and port numbers used by the firewall
The inbound and outbound proxy host names (or IP addresses) and port numbers for a firewall must be set if the connection between DDMC and the Data Domain or PowerProtect system is through a proxy.
NOTE This section is disabled when adding HA systems.
NOTE In DDMC, ports 8009 and 8080 are restricted to localhost only and are inaccessible from outside. DDMC is accessed by default HTTP port 80 or, if SSL is enabled, by default HTTPS port 443.
The terms inbound and outbound are from the perspective of DDMC. Inbound means from the system to DDMC, and outbound means from DDMC to the system.
Starting with the simplest situation (direct connection) for explanation, here are some scenarios and how you would set up the inbound and outbound proxy firewall host names (or IP addresses) and port numbers.
DDMC connecting directly to a system (simple case)
In the simplest case of connecting DDMC to a Data Domain or PowerProtect system, the system can resolve "ddmc.myco.com" to 1.1.1.1, and DDMC can resolve "ddr.myco.com" to 1.1.1.2.
In this simplest case, it is assumed that:
- DDMC can connect to the system using TCP.
- The system is similarly able to connect to DDMC using TCP.
- DDMC, by default, tries to translate the hostname of a system (that is, the name that is returned using net show hostname or the name that you see in the DD System Manager) to an IP address using DNS or a host file.
- The system similarly tries to translate the DDMC hostname to an IP address using DNS or a host file.
- DDMC connects to TCP port 3009 on the system, and the system connects to TCP port 3009 on DDMC.
A system with multiple network interfaces
When a system has multiple network interfaces, you need control of the specific interface that is used by DDMC.
NAT firewall between DDMC and system
When a NAT (network address translation) firewall exists between DDMC and a Data Domain system, the firewall is configured so that when you connect to a port on the firewall, the firewall proxies that connection to an IP address and port number on the destination system. The IP address to which DDMC connects does not match any IP address on the system itself. Port numbers may be re-mapped as well. To connect to a system, you would connect to a port other than 3009 on the proxy.
In this case, when DDMC wants to connect to port 3009 on the system, DDMC must try to connect to port 12,345 on the firewall. Conversely, when the Data Domain system wants to connect to port 3009 on DDMC, the Data Domain system must try to connect to port 54,321 on the other side of the firewall.
To configure this, set the outbound proxy hostname to 1.1.1.2 and the outbound proxy port number to 12,345. Set the inbound proxy hostname to 1.1.2.3 and the inbound proxy port number to 54,321. The rule is that the outbound hostname and port number are the addresses to which DDMC should try to connect when it wants a connection to port 3009 on the Data Domain system. The inbound proxy hostname and port number are the addresses to which the Data Domain system should connect when it wants a connection to port 3009 on DDMC.
Avoiding the addition of host names to peer's DNS server or /etc/hosts file
There may be situations in which you do not want to add the hostname of the DDMC, or the hostname of the system, or both, to their peer's DNS server(s) or to their peer's /etc/hosts file.
In these situations, depending on the host name(s) you do not want to add, you can instead specify the IP address of DDMC in the inbound proxy hostname field and/or the IP address of the system in the outbound proxy hostname field.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\