Home > Data Protection > PowerProtect Cyber Recovery > Dell PowerProtect Cyber Recovery: Reference Architecture > Recommended network speed for DD series interfaces
The Cyber Recovery software enables and disables the replication Ethernet interface and the replication context on the DD series in the Cyber Recovery vault to control the flow of data from the production environment to the vault environment. The Cyber Recovery software manages the replication link, and the connection is only enabled when new data must be ingested by the DD series in the Cyber Recovery vault.
The replication link on the DD series in the Cyber Recovery vault uses its own unique Ethernet interface. For the replication link that connects the production DD series to the DD series in the Cyber Recovery vault, using the fastest link speed possible, preferably 10 Gb/s Ethernet (GbE) is recommended and supported up to 25 Gb/s.
To secure the network links that connect the vault environment to the production environment, or any other network, installing a firewall or other packet inspection tool on both the DD series replication link and the SMTP link is recommended. It is recommended not to make use of packet inspection if a firewall is placed in the replication path. The cost of firewall will be very high, and the deep packet inspection would slow the process down.
If a hyperconverged VMware appliance is installed in the Cyber Recovery vault, the VMware NSX Distributed Firewall (DFW) is a satisfactory firewall option to reduce complexity in the vault environment and protect VMware-based infrastructure. Additionally, the DFW is a potential software-defined option for protecting the Data Domain replication link between production and vault DD series at near wire speed.
The Cyber Recovery software does not support adding Ethernet interfaces to a Cyber Recovery virtual appliance deployment.