I am trying to install ITS in a Dual host environment. The install completed successfully and I can launch both ADM and SAP websites (its_ping and webgui). Continuing to configure IACOR on Windows, I am able to successfully connect it on AGate host. Since the install document mentions to perform this on both AGate and WGate in case of Dual host installations, we are having issues configuring IACOR on the WGate server.
IACOR service is running but when we try to create a new connection from IACORadmin.exe, it gives us a "CPIC(TCP/IP) error connection to host, service sapms<SID> timed out"
From what I understand, Wgate is directly trying to establish a connection to R/3 backend. Do we have to define any firewall rules to allow WGate to connect directly to R/3 backend on port 3600/3300?
The other question is if we have to open up a port directly from a Wgate server in DMZ to a intranet server (R/3 backend), then ain't the very purpose of security in Dual Host install is getting void??
Can somebody answer these questions?