I've been trying to setup a fabric network spread across multiple locations. One of the major issues has been locating and communicating with peer nodes behind firewalls. The only solutions I've come up with have been setting up a VPN and joining all the nodes to that or port forwarding some of the nodes (anchor peers and orderers) so that some communication can occur. The first one is usable now, but becomes a nightmare to manage if the network expands. The second is a security risk. Am I missing something obvious? Is there a better alternative to what I'm doing? 

Cavell Teng

