Load Balancers

When the Vulnerability Protection Manager is deployed without load balancers, Agents are provided with the list of Manager hostnames and will automatically contact those hostnames.

If your Vulnerability Protection Manager is located in a DMZ or behind a NAT, you may choose to put a load balancer in front of the Manager so that Agents can access the Manager’s public IP address or FQDN. You can enter the load balancer settings at Administration > System Settings > Advanced. The hostnames and ports you supply here will override those currently used by the Agents.

The Manager web console can be deployed behind a normal terminating SSL load balancer. The Agent's heartbeat port (defaulted to 4120) must be a non-terminating load balancer because of the mutual SSL authentication used in the heartbeat communication.

The load balancer settings supplied here will also override the addresses generated by the Deployment Script Generator.