Connection direction between MSP Central Node and Customer Appliances

9 votes

At the Moment the central system of MSPs is connecting to the customer appliances, which requires DNAT rules to allow the connection from outside to the customer appliance.
The connection should initiated by the customer appliance to the MSP central checkMK system by default secured via https 443.
So in most cases there is no change of the customers firewall required.

Under consideration Site management Suggested by: Ralf Schwarzmaier (09 Jun, '22) • Upvoted: 24 Apr • Comments: 2

Comments: 2

13 Jun, '22
Marc Hurrelmann
Since this feature is currently not available, we have decided against using CheckMK.
1
16 Jun, '22
Robert Sander
The appliances could feature a VPN setup where the admin configures the direction of the VPN connection. The CheckMK connections would then be tunneled through that VPN without having to rewrite core CheckMK functionality.
1