Turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Do you mean 
Community Home Request Access Read Blogs Share Your Ideas Search Community View My Settings
Reply
New Member
tjdickie
Posts: 3
Registered: ‎04-02-2013

UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 08:42 AM

Hi Everyone

 

We are in the planning stages of going from 7.5 to 8.0 and we want to enable our remote sales force to use mobile capabilities. We are looking at putting an IIS server in the DMZ and our security team is not thrilled with this idea. Our current understanding is we need to open up ports to let the IIS server communicate back through the firewall to the SQL server on port 1706 using TCP and we also need to open up a couple of other ports for the app server and use UDP. This is where our team has issues.

 

Do you need to open up a UDP port or can it be configured to use just TCP?

 

Is there any enhanced security settings that can be put in place to protect this if it needs to use UDP?

 

If it can only use UDP what is UDP used for specificly? Is there functionality that can be disabled around this usage or is required for base functionality?

 

Any insights on this are appreciated and will hopefully put our security teams mind at rest.

 

Thanks

 

Tom

 

Report Inappropriate Content
Message 1 of 7 (2,629 Views)
0 Kudos
Silver Super Contributor
Silver Super Contributor
MikeSpragg
Posts: 801
Registered: ‎03-24-2009

Re: UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 08:46 AM

That was the old method - everything now traverses through the web ports defined e.g. 80, 8080 etc. No need to open any other ports.
Report Inappropriate Content
Message 2 of 7 (2,624 Views)
0 Kudos
New Member
tjdickie
Posts: 3
Registered: ‎04-02-2013

Re: UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 08:58 AM

Thanks Mike

 

So we are just using https on port 80 or what ever to go back to the app server and a connection to the SQL Server?

 

Report Inappropriate Content
Message 3 of 7 (2,626 Views)
0 Kudos
Silver Super Contributor
Silver Super Contributor
MikeSpragg
Posts: 801
Registered: ‎03-24-2009

Re: UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 09:37 AM

Correct. The clients all use port 80/443 etc. You shouldn't need to put anything in any dmz. Sdata works the same way. Attachment, Library items etc. all come through this channel.
Report Inappropriate Content
Message 4 of 7 (2,614 Views)
0 Kudos
New Member
tjdickie
Posts: 3
Registered: ‎04-02-2013

Re: UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 09:42 AM

The clients use 80 to connect but the IIS to the app server and db server inside the firewall are not using udp ports it is all tcp?

 

 

Report Inappropriate Content
Message 5 of 7 (2,615 Views)
0 Kudos
Silver Super Contributor
Silver Super Contributor
MikeSpragg
Posts: 801
Registered: ‎03-24-2009

Re: UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 09:51 AM

No, it's all TCP. Except where SQL Server uses UDP. But that should be all "inside" your network.
Report Inappropriate Content
Message 6 of 7 (2,612 Views)
0 Kudos
Highlighted
Gold Super Contributor
Gold Super Contributor
RJLedger
Posts: 3,087
Registered: ‎03-19-2009

Re: UDP in the DMZ for SalesLogix 8.0

‎04-02-2013 11:58 AM

What I believe Mike is saying... don't bother w/a DMZ at all. Just add a certificate and open (from the outside to the inside IIS server) port 443 for https.

--
RJ Ledger - rjledger@rjlSystems.net +1 603.369.3047 x101
alt
".. Innovators in Mobility - Experts in Workflow Automation..."
http://www.rjlSystems.net - blog: www.rjlSystems.net/blog.html
Report Inappropriate Content
Message 7 of 7 (2,611 Views)
0 Kudos