Hi, we are investigation the webmail possibility of Notes. We don’t want to go from firewall directly to internal servers, but via a (domino) host in the DMZ.My questions are :
can a Domino server (in our DMZ) do passthru using http(s) or is this only possible using notes client.
Is there are design (like with exchange / outlook) where a notes server can act as a front end server, so retrieving the email /data on demand ?
we have our mail users divided over two mail servers. How can in be configured to have a user be direceted to his own server.
our mailservers are clustered (in failover mode) : will failover work using webmail ?
A lot of questions, but I hope to receive some feedback. If important information about our environment is missing , please let me know.
To be directed to your home mail server, look at webmailredirect database (free and in the box).
Failover? I think that this can happen, but you will need an IP Sprayer or some other device to determine if the requested Domino server is alive or dead and then to send the HTTP request to the appropriate server.
Your Domino server in the DMZ can do the authentication, and then, with the MailRedirect database, send the user to the appropriate server over HTTP/HTTPS.
I don’t quite understand the retrieving of mail/data on demand. Like a Blackberry or using POP/IMAP?
thanks for the quick response. I will check out the webmail redirect database.
About the ‘on demand’ : I don’t know exchange, but i was told that there is an option to put a so called Frontend server in the DMZ that links to an internal Exchange server. There is no data (email) on the front end server but it’s being pulled from the exchange server when a user is retrieving his mail using webmail. I don’t know if this is done using POP / IMAP or anthother protocol.
If I want the DMZ notes server to be in a seperate (notes) domain and cross certify with internal servers, can I then put a replica of the internal domain’s NAB as secondairy NAB on the DMZ domain for authentication ?
AFAIK, if you have a server in the DMZ, and you are using the web mail redirect DB, once the person authenticates, he is sent to his mail file on the other server. I think that would answer your question.
As for cross certifying, yes, that seems very reasonable.
Both of these questions could be answered by putting a small, test server in your DMZ and trying it out for a short time.