Best way to encrypt sockets between two servers

Yellow, Im developing 2 server, both of them are in different places, they need to talk with each other. What do you recomend to encrypt theyr messages ? SSL ? Is there any way to identify Server A is really server A and he wants to start talking with server B and vice versa, no passwords are required here, is this possible ?

Hi,
You can use SSL with client authentication. With this approach, the server that is the current client (even though they are both servers, one will act as a client) can verify the server certificate of the other, it can then send a client certificate to the the server so that it is able to authenticate it.
Cheers,
Shane

Similar Messages

  • Best way to get internet between two buildings???

    Hello all! I have some questions about a possible setup I am thinking of running.
    I have building that has internet coming into it. 15yds away, I have another building (which is brick) that has no internet options. I was thinking about buying two Airport Extreme's, making one the base and using the other one in the other building the access point for WDS. Then buy a couple of the Airport Expresses to push the signal throughout that building.
    Thoughts on this? Is there a better way to get internet between two buildings (without running cables) and then push it through out that building?
    I am open to any an all suggestions.
    Thanks,
    Grant

    Welcome to the discussions!
    Ethernet is always the best choice for signal strength and reliability. If you do not want to run ethernet cable to the second building, your options are down to ethernet powerline adapters and wireless.
    The ethernet powerline adapters work by transmitting the ethernet signal over the AC power line. The difficulty here may be that the other building is on a different electrical circuit, so it may or may not work depending on how the electrical wiring is configured. An electrician could run tests to see if this would work.
    The least reliable option is wireless. To have the best chance of working well, the "sending" and "receiving" routers need to be able to "see" each other through a window or other opening. Be sure to test with a laptop in the second location to see if you will have a strong enough signal to work with before you go this route.

  • Best way of sending signals between two VIs

    Hello all,
    I have two VIs. One that generate some complicated signals (sine wave, impulse, etc.). The other one takes manually inputted voltage and pressure send them out to some hardware with a pump, and reads back the output of the pump.
    What is the best way of sending the waveforms from the signal VI to the manual control VI? I still need to be able to control the signals manually in that manual control VI.
    Thanks.
    Solved!
    Go to Solution.

    nitad54448 wrote:
    hi
    For exactly this kind of process, I am using queues, FG and (relax ppl, I know..) global variables. If you are writting a global in one Vi and reading it in another (to prevent accidental (fake)updating); globals are easy to implement. Many people hate them (I do, sometimes) but for these kind of cases I think they are well adapted.
    For FG you need a user control and a vi for each variable you want to share... Both FG and globals are "bottle in the ocean" like of information : you send some info and sometimes this info will arrive somewhere...
    If you need to be sure that the info is passed then Queues are to be used...
    N
    While you may not run into race conditions using global variables in a write once/read many approach they do not protect you from some part of your application deciding to write to them. FG at least provide some level of protecting access while globals do not. In addition, global variables can create multiple copies of your data. If your data is large, this can be problematic. I much prefered using a defined messaging scheme. The intent is very clear and you can provide safe guards. Even FGs are better. I personally would never recommend the use of global variables even though some cases MAY work out. A defined API is always a prefered approach and helps to keep the code modular and decoupled. This leads to greater reuse. Global variables tie things together and make reuse more difficult.
    Mark Yedinak
    "Does anyone know where the love of God goes when the waves turn the minutes to hours?"
    Wreck of the Edmund Fitzgerald - Gordon Lightfoot

  • Best way to configure IPSEC between selected servers and clients

    Hi, I've done a fair bit of reading and cbt videos, and have experimented for quite a bit in test environments, and I haven't come up with a best path for what I want to do.  If someone could put me on the path to accomplish my goal, I would appreciate
    it greatly.
    I'm operating in an active directory environment at the 2008R2 functional level.  I have a member server processing sensitive data which it receives from clients.  My goal is to have all traffic between the member server and its clients encrypted
    with IPSEC, but can't quite find what I'm looking for after spending a fairly embarrassing bit of time looking.  Do I want:
    IPSEC via group policy, whereby I apply a gpo with the IP Security policy "Server (request security)", to the server and apply a gpo to the clients with "Client (respond only)" set?   If so, I haven't gotten this working, is
    there more configuration needed?
    Configure IPSEC  Advanced firewall connection security rules?
    Both 1. and 2. above?
    Server and domain isolation? (This appears to be a lot of reading on whether or not it's a subset of the above methods, or a combination of them, or more).
    If someone could point me to some documentation on the simplest way to do this, I would appreciate it greatly!!
    Thanks,
    Kevin

    Hi Kevin,
    Both GPO and IPSEC Advanced firewall connection security rules are required.
    Here is a step by step guide about how to deploy IPsec policy.
    Windows Firewall and IPsec Policy Deployment Step-by-Step Guide
    http://technet.microsoft.com/en-us/library/deploy-ipsec-firewall-policies-step-by-step(v=WS.10).aspx
    Best Regards.
    Steven Lee Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

  • Best way to transfer file between two web apps

    I'm looking for some architectural suggestions. Seems like a simple problem, but I'm really struggling.
    -- Problem:
    We have two web servers, both running apps in JBoss. I need to pass a file of roughly 20MB from one server to the other, and get the other server to process it as soon as it receives it.
    -- Details:
    Seems simple enough... My plan was to write a web service to pass it. Our company is all onboard the SOA train. I wrote a service that encoded the file as a byte[] and passed it. Works amazing for small files, but throws an Axis OutOfMemory error when trying to base64 encode the file. I then looked at using attachments for web services, but dismissed that. It creates malformed XML since it treats the service as a multipart MIME message wraps the webservice inside. It quickly became messy and I couldn't get it working. Seemed to defeat the purpose of an XML service too.
    I've considered just doing a HTTP POST of the file to the other server, but that's poorly documented and a bit of a hack way to do it. I also considered just dropping the file in a web accessible folder, then using a web service to pass a URL and get the other server to retrieve it via HTTP. Again, not a very nice solution.
    Anyone have any suggestions? Thanks.

    Kimos2 wrote:
    I don't have access to run/configure services on these machines, so FTP is out. It has to be JVM to JVM. Even if I did, I'd have to worry about triggering JBoss to process the file right away after it had been dropped there. I know i could poll the directory or send a message to trigger the process, there'd be synchronization issues etc to work through and seems to introduce unneeded complication.Yes, I agree with that. Having been through the polling directories and grabbing partially uploaded files scenario ad nauseam. It's much worse with large files too.
    Barring any suggestions I haven't thought of, I'll probably end up settling on the HTTP POST solution. My problem is that it's providing a service without a specification and is not self-describing. No WSDL file to pass to clients that plan on using it. I would do HTTP POST as well. I didn't understand the part about "without a specification". You do have a specification, don't you? Wasn't this it: "I need to pass a file of roughly 20MB from one server to the other, and get the other server to process it as soon as it receives it." Informal, yes, but I don't have a problem with that. Post it to a URL on the receiving server and set up the receiving server to do whatever it's supposed to do with the file.

  • Best way to get different between two timestamp

    Hi all is a simple question?
    I want the different in days between 2 timestamp.
    The timestamp can be of different year.
    Any solution?

    pedriky wrote:
    Can be a solution form many situation?
    long difMil = new Long( (timestamp1.getTime() - timestamp.getTime())+"");
    int milxday = 24 * 60 * 60 * 1000;
    difMil= difMil / milxday;Why the incredibly messy subtraction?
    What's wrong with:
    long difMil = timeStamp1.getTime() - timeStamp.getTime();
    int days = (int)((difMil + 12 * 3600000L) / (24 * 3600000L));NB, if you don't round your division you can get problems where daylight saving time shifts the start of the interval forward an hour.

  • Different ways to copy data between two schemas in one instance

    Hi there,
    I am searching a good way to copy data between two schemas in the same instance.
    Both schemas have an identical structure such as triggers, tables, views and so on. The only difference is the purpose: one is the productivity system and one is for development.
    I looked at datapump but I do not explicit want to export / import. I want to keep the data in the productivity schema as well as copy it to the other schema. Any ideas? I found out there is a copy statement but I dont't know how that works.
    Thank you so far,
    Jörn

    Thank you for your replies!
    I also thought of creating a second instance for development and move the dev - schema to it. I just don't know whether our server can handle both (performance?). Anyway the idea is to have a possibility to quickly rebuild the data inside a schema without indixes or triggers, just pure data. I thought the easiest way would be to copy the data between the schemas as they are exactly the same. However if you tell me DataPunp is the best solution i won't deny using it :).
    When you export data a file is created. does that also mean that the exported data is deleted inside the schema?
    best regards
    Jörn
    Ps: Guido, you are following me, aren' t you? ;-)

  • Cannot get Telnet to work between two servers on same subnet

    I need to test if communication is open on port 8444 between two servers.
    I installed telnet client on a Server 2008 R2 server and telnet server on a Server 2008 SP2 server.  I also manually started the Telnet service that was set to disabled on the SP2 server.  I disabled the Windows firewall on both servers.  They
    are both on the same subnet so they don't need to go through any routers and I can ping successfully.
    When I try to telnet to the remote server by typing telnet "ip address" 8444, I get an error that says "Could not open connection to host, on port 8444:  Connection failed.
    I tried other ports like port 80 and got the same error.
    What else is needed to get this to work?

    VMs have nothing to do with it, as long as there's network communication between the servers.
    As I said, there must be a service or application listening on that port for it to respond. For example, try this:
    C:\> telnet
    When the telnet prompt opens, type in:
    open mail.messaging.microsoft.com 25
    If it works, you should see this:
    220 CH1EHSMHS035.bigfish.com Microsoft ESMTP MAIL Service ready at Thu, 7 Feb 2013 00:57:33 +0000
    That means that Microsoft's mail servers are LISTENING on port 25 and it responded. And note, telnetting to port 25 is a non-default telnet port, because port 23 is the default telnet port. When you type in a space and then a port number, you're telling
    the telnet client to use that port.
    That is the SAME THING if some sort of application or service is listening on port 8444 on that other server you're trying to telnet to. If there is no app or service listening, it will just time out.
    And no, installing the TELNET service on that sercver will NOT answer to any port other than 23. The telnet service by default, uses TCP 23, unless you specify otherwise.
    So once again, what service or app on that server is supposed to be listening on 8444?
    Ace Fekay
    MVP, MCT, MCITP/EA, MCTS Windows 2008/R2 & Exchange 2007, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Technical Blogs & Videos: http://www.delawarecountycomputerconsulting.com/
    This post is provided AS-IS with no warranties or guarantees and confers no rights.

  • Best way to transfer video between iphone and mac wirelessly?

    Please suggest me the best way to transfer files between mac and iphone wirelessly.Mainly for videos.

    If you want to transfer photos and videos from the Mac to the iPhone (but not in the other direction) you can use iTunes and sync via wi-fi: http://support.apple.com/kb/HT1386
    If you want to wirelessly tranfer videos in the other direction you may want to look into a 3rd party app such as http://www.photosync-app.com Note that I have not used that app so be sure to investigate others as well.

  • How e-mail is routed between two servers

    Hi ,
    Please anybody tell me how e-mail is routed between two servers , from the software point of view as well as hardware point of view .
    And how Java mail API related to that .
    Thanks,
    Kiz

    If you're looking for a simple answer there isn't one. Here's a place to start.
    http://community.roxen.com/developers/idocs/rfc/rfc974.html

  • Best way to transfer data between loops?

    Hi, whats the best way to transfer data between loops(state machines, regular while loop etc) in labview. For so many years ive been using local variables but these can cause race conditions. Anyone advise?
    Stu

    It depends one the structure of the loops and how they need to exchange data (unidirectional, bidirectional, broadcasting).
    The simple case of one loop passing data to the other loop: producer/consumer design pattern using a queue
    If the structure already contains an event structure: User Events
    The way I code is documented in my community nugget on events
    I often mix this with producer/consumer.
    Felix
    www.aescusoft.de
    My latest community nugget on producer/consumer design
    My current blog: A journey through uml

  • Best way to transfer data between iMac early 2006 and iMac late 2012

    What is the best way to transfer data between iMac early 2006 and iMac late 2012?

    HI, is this for Migrating all data ove, or just File Sharing?
    What OSX version is in he older one?
    Do you have any backup external drive for the older one?

  • How to Break the cluster between Two servers

    Hi Experts,
    Since Iu2019m new to BOBJ XI R2.I would like to know how to break the cluster between two servers.
    Description :
    So far we took the copy of QAS Server1 to the new QAS server2 (Through Mirroring Tool ). Now those two servers are cluster together, I can see QAS server1 CMS Name, Cluster Name, cluster member name in QAS Server2 (CMC-> Setting -> Cluster).
    Besides in QAS Server1 CMS Name and Cluster name are pointing to the QAS Server1, except Cluster Member (This is still have two members Server1 and Server2).(CMC-> Setting -> Cluster).
    In QAS Server1 and QAS Server2 (CMS-> Servers), I can able see both server name under Machine Name tab.
    I would like to make those two servers as independent servers. There are two different data source for those two servers. I want to remove the cluster in both servers.
    Right now QAS Server1 is running and QAS Server2 is stopped.
    If i create/modify a group under new Mapped NT Member Groups in QAS server2 ,it is getting reflecting in QAS server 1.
    Could you please tell me the steps to resolve this problem.
    BO Version: BO XI R2
    Regards,
    Sridharan

    Hi,
    Maybe the external CMS is still 'attached' to your SIA node. Please go to the CCM (Central Configuration Manager) and stop the SIA (Server Intelligent Agent). On one of the tabs you can see if there is an external CMS part of your environment. Delete it and restart the SIA. Retry if you can delete the services now from within your CMS. It may well be that you have to stop both environments and delete each others CMS via the CCM to get it working. If you have not changed any permissions for your Administrator account the security model will not be the one causing this.
    Hope this helps...
    Martijn van Foeken
    Focuzz BI Services
    http://www.focuzz.nl
    http://nl.linkedin.com/in/martijnvanfoeken

  • Is their any easy way to replicate DRM application between two servers?

    Hi Guys
    I have a Test and Dev environment I need to synchronize these two servers. One option is to export all the Properties, Version, etc one by one and then import it to required test or dev environment. This is little time consuming method.
    I am looking for something like replicating (Copying) the entire application from DEV to test in one single go. Is their any option available in DRM.
    Thanks & Regards
    -Ramesh Janarthanan

    its as simple as Martin says.
    but keep a look at username/password of db user/db (server) name. Its very easy to configure in the drm console.
    Good luck.

  • [vmware] Best way to share files between host and client

    Good afternoon!
    I have successfully installed VMware server on my machine and set up a virtual machine, powering Windows XP for study issues (emulation via wine does not do the trick for me). The virtual machine runs fast and stable but does not meet my requirements unless I have two issues faced:
    First:
    How to access a USB pendrive monunted by the host system properly within the client?
    Second:
    What is the best way to share file system space between host and client? Should I set up a Samba share which is accessible for both host and client or is it save to grant my VM access to my physical hard disc as a whole (using it as a partition)?
    Thanks for answers in advance, I have still quite a lot to learn, when it comes to VMs.
    Regards,
    ~cg

    Do not setup your VMware to be able to access your physical disk as a whole. This would have you mounting the filesystem twice, corrupting it in the process.
    You /can/ setup VMware with Sharing Folders that lets you share your filesystem (either / or just /home or something else) and that is what I would recommend.
    As for accessing the pen drive from both operating systems at once, I'd say use the same Sharing Folders method. I always share /mnt so that I can access my cdrom/USB/etc from the vmware OS.
    The sharing folders is basically the same as a samba share, but uses vmware's own method (HGFS). Samba is more secure (if you are worried about your VMware OS breaking from it's shell and attacking your real filesystem, which is unlikely). You need the vmware tools installed to make use of it.

Maybe you are looking for