2nd domino server in DMZ

[ibang]

Hi,

I have a first Domino (V505) on an AS/400, in the internal LAN segment.
I want to install a 2nd Domino server in a DMZ segment on a W2000 server.
This 2nd Domino server is use as a SMTP relay to send/receive message from Internet.
The firewall is a Cisco PIX 515.
Is it necessary to use the same Domino domain for both Domino server ?
If not how can i proceed. What is the secure way to operate?

Any help is welcome.

Best regards / Cordialement / Mayega.

 

[AmazingDominik]

Hi,

I would highly recommend you to use the same Domino domain for both servers. Also use the same "Notes Network"

This will simplify everything for you. You just need to enter the name of your new server in the configuration document of your AS/400 server and your mail relay is set up.

Make sure your new server is not a pass-tru server.

To make it more secure however it might be a good idea to keep your server behind the firewall. Let the firewall handle incoming SMTP traffic and route it to the internal server with an internal IP address. Most firewalls can do that.

You can restrict traffic to only port 25 if you need to.

Do not use SMTP internally but use the Notes routing protocol between your servers.

Hope this helps!


Kind regards,

Dominik Malfait
dominik@amazingit.com

http://www.amazingit.com