ELM Enterprise Manager includes the option for a powerful Multi-tier Architecture. It can be employed to conserve bandwidth, enhance scalability and support network security policies.
Just as Agents transfer events to their ELM Server, an ELM Server can forward events to another ELM Server. These events are encrypted and include the same reliability features as the Agent-to-ELM Server communication.
Two common applications include forwarding critical events to a Network Operations Center and minimizing outbound traffic from a sensitive environment.
Multi-Tier NOC Architecture
In a highly distributed network, the ELM Multi-tier Architecture can be used to efficiently store the majority of the system management data in the local databases and forward the only critical events to a NOC ELM Server. Network teams can centrally manage the alerts while investigations and reporting remain at the local ELM Server.
DMZ ELM Server Architecture
In highly secure networks, there are often restrictions on outbound traffic. The DMZ ELM Server Architecture provides the opportunity to securely operate ELM and store the data behind the firewall and still launch email, Syslog Messages or SNMP Traps from the DMZ.
Agent Installation Package
In most cases, the Agents and their assigned Licenses can be deployed from the ELM Server through the ELM Console. They can be deployed in groups or one at a time. Depending on network security policies, this remote deployment option can fail. The workaround is a local Agent Installation Package. Once the Agent is installed and the two listening ports configured, the Agent can start communicating with the ELM Server.
Standby ELM Server
To eliminate a single point of failure, ELM supports a hot Standby ELM architecture. Under this configuration, any Agent that is unable to securely store their events in a database will independently redirect them to the Standby ELM Server. Once the problem is resolved, the Agents will return to their ELM Server. This innovative architecture provides an extra layer of resiliency to proactive server monitoring, alerting and reporting.