Help with RMS/relay

Jak, thanks for your response and my apologies for not checking back sooner.

I was finally able to obtain the steps required to get the relay set up properly for this customer's needs.

We used scenario 2 for this configuration:  

http://www.sophos.com/en-us/support/knowledgebase/50832.aspx

The customer configured a FQDN that points to their relay server from inside their DMZ as well as ensuring external clients could resolve the relay's FQDN and reach the relay on ports 8192, 8194 and 80

For the parts associated with modification of the MRINIT.conf and additional SUM installation:

1) Navigate to the SUMInstallSet share on your Enterprise Console Server and copy the entire contents of that share to a temporary folder on the relay server.

2) Edit the MRINIT.conf file so that the ParentRouterAddress is set to the FQDN of the relay server.  Do this before installing SUM.

3) Leave the MRParentAddress unchanged and ensure the relay server can communicate with that IP address.

4) Install SUM

Both the relay and Enterprise Console servers require ports 8192 and 8194 to be open in both directions to each other.  The relay server needs to be able to reach the IP address of the Enterprise Console Server as shown in the MRParentAddress line in the MRINIT.conf file.

After SUM has been successfully installed on the relay server, it will appear under the Update Managers view in the Enterprise Console.  After it's appearance, simply apply subscriptions and licenses in order for it to begin downloading and deploying updates.

Here is the article covering the set up of IIS:  

http://www.sophos.com/en-us/support/knowledgebase/38238.aspx

I hope this information will be helpful to others who are tasked with carrying out similar configurations.

Thanks!

Joe

Jak, thanks for your response and my apologies for not checking back sooner.

I was finally able to obtain the steps required to get the relay set up properly for this customer's needs.

We used scenario 2 for this configuration:  

http://www.sophos.com/en-us/support/knowledgebase/50832.aspx

The customer configured a FQDN that points to their relay server from inside their DMZ as well as ensuring external clients could resolve the relay's FQDN and reach the relay on ports 8192, 8194 and 80

For the parts associated with modification of the MRINIT.conf and additional SUM installation:

1) Navigate to the SUMInstallSet share on your Enterprise Console Server and copy the entire contents of that share to a temporary folder on the relay server.

2) Edit the MRINIT.conf file so that the ParentRouterAddress is set to the FQDN of the relay server.  Do this before installing SUM.

3) Leave the MRParentAddress unchanged and ensure the relay server can communicate with that IP address.

4) Install SUM

Both the relay and Enterprise Console servers require ports 8192 and 8194 to be open in both directions to each other.  The relay server needs to be able to reach the IP address of the Enterprise Console Server as shown in the MRParentAddress line in the MRINIT.conf file.

After SUM has been successfully installed on the relay server, it will appear under the Update Managers view in the Enterprise Console.  After it's appearance, simply apply subscriptions and licenses in order for it to begin downloading and deploying updates.

Here is the article covering the set up of IIS:  

http://www.sophos.com/en-us/support/knowledgebase/38238.aspx

I hope this information will be helpful to others who are tasked with carrying out similar configurations.

Thanks!

Joe