Results 1 to 4 of 4

Thread: E1 and Demilitarized Zone

  1. #1
    Senior Member
    Join Date
    Apr 2001
    Location
    Brazil
    Posts
    839

    E1 and Demilitarized Zone

    Hi,
    I installed E1 E900 in a DMZ (Demilitarized Zone) at a client. The servers are DEPServ, EServ, DBServ and WEBServ. The URL for connection is, for example, http://WEBServ:8083/jde/E1Menu.maf .

    As all these servers are NOT visible from outside the DMZ (not by name nor by IP), the client created some URLs like

    jde-dv.clientname.com
    jde-py.clientname.com
    jde-pd.clientname.com

    to give access to his users. Now I have two questions:

    1. the URL "jde-pd.clientname.com" is accessible from anywhere, even from outside the company. Is this not a security issue to publish the E1 login screen to the world?

    2. When I access E1 with the URL "jde-pd/clientname.com" instead of "http://WEBServ:8083/jde/E1Menu.maf", should I expect future problems? Could E1 not reference its original name WEBServ any time, which then will not be visible for the user?

    Thanks for any opinion.

    Gerd
    B732 - E8.9, Unix, AS400, Windows, Oracle, SQL, WTS, JAS

  2. #2
    Senior Member
    Join Date
    Apr 2001
    Location
    Brazil
    Posts
    839

    Re: E1 and Demilitarized Zone

    No answers so far ...

    Has anybody seen an E1 installation similar to the one described above?
    I am asking because my client claims that is is "state of the art security technology" and does not understand our concerns.
    B732 - E8.9, Unix, AS400, Windows, Oracle, SQL, WTS, JAS

  3. #3
    Senior Member
    Join Date
    Nov 2000
    Location
    Toronto, Ontario, Canada
    Posts
    979

    Re: E1 and Demilitarized Zone

    Do you have a sketch you can share?

    All that really needs to be done is to put an HTTP server in the DMZ and punbh through just the appropriate holes in the firewall.

    The client should also be using SSL.

    You can have WAS reference any virtual host name. Really depends on if you're adding a virtual host or doing a redirect.

    JDE has a document out there that tells people to do a redirect......this ain't so good and my preference is to add a virtual host. This avoids any visibility into the alternate url's.

    Colin
    Colin Dawes
    Chief Technology Office
    Syntax.net

    Montreal - New York - Toronto - Boston

    B73X to EnterpriseOne 9.X
    Oracle, SQL Server, DB2/400
    AS400, Intel, VMware, Blade, SAN

  4. #4
    Senior Member
    Join Date
    Apr 2001
    Location
    Brazil
    Posts
    839

    Re: E1 and Demilitarized Zone

    Thanks Colin.

    Do you know what this document is called or where I can find it?

    I have been looking for something like that but have not found it.

    Gerd
    B732 - E8.9, Unix, AS400, Windows, Oracle, SQL, WTS, JAS

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Time Zone
    By mgerritt in forum JD Edwards® World™
    Replies: 8
    Last Post: 06-05-2013, 06:08 PM
  2. Time Zone treatment - E1 9.0
    By rsvconsulting in forum JD Edwards® EnterpriseOne
    Replies: 1
    Last Post: 09-24-2012, 10:15 AM
  3. Time Zone treatment - E1 9.0
    By rsvconsulting in forum JD Edwards® EnterpriseOne Developers
    Replies: 0
    Last Post: 09-24-2012, 07:12 AM
  4. Zone and Route codes
    By sashank_jde in forum JD Edwards® EnterpriseOne Applications
    Replies: 2
    Last Post: 01-24-2006, 04:41 AM
  5. Carrier Zone
    By sashank_jde in forum JD Edwards® EnterpriseOne Applications
    Replies: 1
    Last Post: 09-06-2005, 06:27 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
The legal restrictions and terms of use applicable to this site are available here.
Use of this site signifies your agreement to the terms of use.
JDELIST is NOT affiliated with JD Edwards® & Company, Oracle or Peoplesoft. Contents of this site are neither endorsed nor approved by JD Edwards® & Company, Oracle or Peoplesoft.