Sun Java System Directory Server - which TCP ports for firewall rule for directory server with o
Hello,
I want to know exactly which ports needs to open for proper function of DS in DMZ zone. The DS in DMZ zone is consumer replica and is using another configuration server (server hosting o=netscaperoot).
Let say we have a DS acting as consumer replica in DMZ zone. We name itLDAP-dmz (LDAP port 389/636 and admin server on port 11760). And this consumer is getting replication updates fromhub-A andhub-B. The configuration server used during installation of LDAP-dmz (and for all the DS servers in the topology) isLDAP-conf.
Only LDAP-dmz is in DMZ zone.
hub-A , hub-B and LDAP-conf are inside intranet (behind firewall). Meaning there is a firewall (sayFW1) between LDAP-dmz and hub-A,hub-B,LDAP-conf.
Now if I understand well the following TCP ports needs to be open on FW1 for operating this setup.
From hub-A, hub-B ->>> LDAP-dmz server on port 389/636 for replication updates.
From LDAP-dmz ->>>>> LDAP-conf server on port 389/636 for administration server running on LDAP-dmz to access o=netscaperoot suffix)
From my workstation
>>>>> LDAP-dmz server on port 11760 (for HTTP access to administration server)
From my workstation -->>>>> LDAP-dmz server on port 389/636 (for LDAP access)
I want to connect to http://LDAP-conf:11760 to access the administration console and then access respective server to administer. Meaning to administer LDAP-dmz I will connect to http://LDAP-conf:11760 and then select LDAP-dmz from list of servers.
Is there any other rules that needs to be defined under this setup (any rules like LDAP-conf --> LDAP-dmz on port 389/636/11760).
Thanks,
Randip
P.S. Sorry for this long scenario.
