Due to security requirement on our organization, we need to deploy Pega platform on 3 Tier physical architecture.
Ie. To have:
Web Tier: Pega front end
Application Tier: services and API's
How can we deploy Pega based on the needed deployment view taking in consideration that employees and users have access to Pega portals(Case worker & Case Manager) from internet as we are serving users across the world.
This does not seem to be any different from any of our production clients. You deploy Pega inside your company firewall (which is app/db tier). You would then front those tiers with a load balancer/web server in DMZ (open to outside traffic). That way, only static web contents will reside in DMZ. Everything else is inside company firewall not accessible from outside world. Your firewall only opens ports (normally 443/80) to allow web traffic into Pega web nodes (NodeType of WebUser).