nodes behind independent NATs

[michabbs]

I want to run two PMG nodes (in a cluster) physically placed in two separate locations, both behind NATs. Is it enough to open and redirect ports: 465 (smtps) and 22 (ssh) on both firewalls for the cluster to flawless communicate/synchronize?

Of course I can set up VPN and use private IP range for intra-cluster communictation, but it seems not necessary since both smtps and ssh are encryped anyway.

 

[Stoiko Ivanov]

see https://pmg.proxmox.com/pmg-docs/pmg-admin-guide.html#firewall_settings

the PMG-nodes need also to be able to reach each other on port 8006 for cluster-sync in addition to the above list.

I hope this helps!