Network Controls


dbWatch Control Center implements several layers of network-level control to protect communication, ensure identity verification, and allow deployment into secured or segmented environments.

These controls are designed to:


1. Certificate-Based Node Authentication

All nodes in a dbWatch domain—including the central server, monitor nodes, and UI clients—must authenticate using certificates issued by the domain’s internal Certificate Authority (CA).

This model provides a cryptographically strong zero-trust foundation for internal communication.

Read more in:
Certificate Infrastructure
Crypto Catalog


2. Built-in Firewall – IP Filtering and Domain Isolation

Control Center includes an internal firewall that adds fine-grained access controls beyond standard OS-level firewalls:

This firewall is optional but highly recommended for multi-node or DMZ-style deployments.

Read more in:
Internal Control Center Firewall


3. Port Listening and Connection Direction

dbWatch Control Center is flexible in how it listens for and initiates network traffic:

This flexibility allows dbWatch to be deployed in restrictive environments such as:

Read more in:
Network and Communications
Web Dashboards and Ports


Recommendations


Related Topics


For help configuring port restrictions, secure firewall policies, or multi-node authentication, contact:
support@dbwatch.com