I spoke with my PCI compliance officer here, and provided you've documented what you're doing here and why, you should be compliant. We had a fairly long discussion about this and I had to explain to him that I was referring to the slave as being a hot standby, ready to take over in the event of an issue with the primary. If you're doing this for some other reason, so long as it's explained, you could still be OK.
--
Jay
On Fri, Oct 9, 2015 at 11:48 AM, dinesh bhandary <dbhandary@gmail.com> wrote:
Hello Everyone:
I am trying to setup streaming rep between master ( which is in PCI tier1 zone) to slave ( PCI tier 2 zone). However, I am told that PCI tier1 can only initiate connection to lower security zone, in our case slave environment ( PCI tier 2). However, for streaming rep to work, slave needs to connect to Master. Does this violate PCI requirement. Anyone has experience setting up master-salve in PCI compliance environment?