Hi,
Let's say we would like to deploy the ITS on the internet and intranet to allow access for CATS Time Entry - webgui.
Assuming two DMZ zones: an outer one facing the internet and containing Security Proxy (Web servers/Reverse Proxy)and another DMZ inner zone containing the ITS servers such as:
Internet
>Firewall
>Security Proxy
>Firewall
>ITS(wgate+agate)
>Optional Firewall
>SAP R/3 and DB.
That way, I will keep both the wgate and agate on same server inside the inner DMZ zone while having two network cards: 1 internet users and the 2nd one for intranet users.
Will ITS work with such a configuration? Or is the architecture suggested in the SAP documentation the only one possible? i.e. by placing the wgate on the web server of the outer DMZ zone, such as:
Internet
>Firewall
>WebServer+Wgate
>Firewall
>Agate
>Optional Firewall
>SAP R/3 and DB
Thanks
Tobi