General discussion

Locked

DMZ & public IP

By rajivnarayanan@hotmail ·
I have situated the corporate domino on a DMZ. Side by side there is also a webmail with an public IP in the same server room.Domino clients wil mail to the mail boxes residing in the webmail server and vice versa.The webmail is accessd by remote users via net. How can I ensure security in such a situation.

This conversation is currently closed to new comments.

2 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by scottsman In reply to DMZ & public IP

If you place the domino inside the network and have it forward the email to the public facing server and vice versa. You can put in static routes so only smtp traffic is sent between the 2 servers. Than you want to make sure you are logging access to each server and use an IDS to monitor the notes server and make sure that you are notified if any traffic other than mail is sent to it. I have done the same thing with a groupwise webaccess Imail server (in DMZ) and a Groupwise mail server )inside network and it has been secure for over 2 years...and passed a 3rd party audit.

Collapse -

by sgt_shultz In reply to DMZ & public IP

do you think this would work: have your public mail server replicate to your private mail server via a serial cable (no tcpip at all) which uses proprietary lotus replication conversation. setup replication without allowing database security changes to replicated to private from public. see many many wonderful free redbooks and other papers about domino security at www.lotus.com

Back to Security Forum
2 total posts (Page 1 of 1)  

Related Discussions

Related Forums