Showing results for 
Search instead for 
Do you mean 
Community Home Request Access Read Blogs Share Your Ideas Search Community View My Settings
Reply
Highlighted
New Member
Posts: 3
Registered: ‎04-02-2013

UDP in the DMZ for SalesLogix 8.0

Hi Everyone

 

We are in the planning stages of going from 7.5 to 8.0 and we want to enable our remote sales force to use mobile capabilities. We are looking at putting an IIS server in the DMZ and our security team is not thrilled with this idea. Our current understanding is we need to open up ports to let the IIS server communicate back through the firewall to the SQL server on port 1706 using TCP and we also need to open up a couple of other ports for the app server and use UDP. This is where our team has issues.

 

Do you need to open up a UDP port or can it be configured to use just TCP?

 

Is there any enhanced security settings that can be put in place to protect this if it needs to use UDP?

 

If it can only use UDP what is UDP used for specificly? Is there functionality that can be disabled around this usage or is required for base functionality?

 

Any insights on this are appreciated and will hopefully put our security teams mind at rest.

 

Thanks

 

Tom

 

Highlighted
Silver Super Contributor
Posts: 801
Registered: ‎03-24-2009

Re: UDP in the DMZ for SalesLogix 8.0

That was the old method - everything now traverses through the web ports defined e.g. 80, 8080 etc. No need to open any other ports.
Highlighted
New Member
Posts: 3
Registered: ‎04-02-2013

Re: UDP in the DMZ for SalesLogix 8.0

Thanks Mike

 

So we are just using https on port 80 or what ever to go back to the app server and a connection to the SQL Server?

 

Highlighted
Silver Super Contributor
Posts: 801
Registered: ‎03-24-2009

Re: UDP in the DMZ for SalesLogix 8.0

Correct. The clients all use port 80/443 etc. You shouldn't need to put anything in any dmz. Sdata works the same way. Attachment, Library items etc. all come through this channel.
Highlighted
New Member
Posts: 3
Registered: ‎04-02-2013

Re: UDP in the DMZ for SalesLogix 8.0

The clients use 80 to connect but the IIS to the app server and db server inside the firewall are not using udp ports it is all tcp?

 

 

Highlighted
Silver Super Contributor
Posts: 801
Registered: ‎03-24-2009

Re: UDP in the DMZ for SalesLogix 8.0

No, it's all TCP. Except where SQL Server uses UDP. But that should be all "inside" your network.
Highlighted
Gold Super Contributor
Posts: 3,087
Registered: ‎03-19-2009

Re: UDP in the DMZ for SalesLogix 8.0

What I believe Mike is saying... don't bother w/a DMZ at all. Just add a certificate and open (from the outside to the inside IIS server) port 443 for https.

--
RJ Ledger - rjledger@rjlSystems.net +1 603.369.3047 x101

".. Innovators in Mobility - Experts in Workflow Automation..."
http://www.rjlSystems.net - blog: www.rjlSystems.net/blog.html