Submit a ticketCall us

AnnouncementsTHWACKcamp 2018 is here

2018 is the seventh year for THWACKcamp™, and once again we’ll be live October 17 – 18 with packed session tracks covering everything from network monitoring and management, to change control, application management, storage, cloud and DevOps, security, automation, virtualization, mapping, logging, and more.

Register for online sessions.

Home > Success Center > Orion Platform > Orion - Knowledgebase Articles > Secure the Orion environment with an Additional Web Server

Secure the Orion environment with an Additional Web Server

Table of contents


This article provides information on why you should install the Orion Additional Web Server application within your environment, and how to secure the Orion environment with Orion AWS. 



  • NPM all versions
  • Orion Platform all versions


In most networks, the Orion NPM server is directly exposed to WAN users through opening firewall ports, or through VPN users who access the LAN environment. This is an unsecured version of installation, compromising the Orion server when exposing the LAN network for outside unsecured browsing. 




You can install the Additional Web Server within DMZ and route the WAN browsing traffic through DMZ in order to maintain security with WAN users.

Installation of an Additional Web Server on an Additional Polling Engine is not supported. You must have a dedicated server for an Additional Web Server.

  • LAN users can access the Orion website from both servers.  
  • The Additional Web Server will be communicating directly with the Orion database. It will also help reduce the load on the primary Orion server and improve browsing performance for LAN users while providing security for your network.

For more information see Orion Scalability Engines.


Last modified