Network environment for two subnets

BIG-IQ Centralized Management

  8.0.0
Network environment for two subnets

You can deploy BIG-IQ to a production environment with just two network interfaces and network subnets. Although this option requires fewer resources and configuration effort, you might need to consider some trade-offs if you choose this configuration:
  • Might not provide the bandwidth and performance levels your solution requires as Elasticsearch queries and replication traffic competes for bandwidth on a shared network/interface.
  • Elasticsearch traffic between cluster members (some of which is not encrypted) is open to the outside world. You can mitigate this issue by using firewalls to restrict access to this subnet.
This figure illustrates the network topology required to deploy BIG-IQ with just two subnets.
Dual NIC network topology
When your network topology combines cluster management and listener traffic on the same subnet you need to perform some additional routing work. For detail, see
Setting up routing for an in-band subnet