Design validation for Internet over MPLS

Similar Messages

• Designing services for xml over http client requests

  Hi
  I am new to WebServices and Weblogic Integration. I have been using it for only over a month. I have a very basic design issue.
  We have to provide a service that
  1. accepts xml over http requests
  2. Returns a request ack
  3. Process Form a response -This activity consumes time so it will be made asynchronous
  4. Send the response as xml over http
  5. Wait for response ack
  6. Get another type of request from client, the processign of which depends on the result of the previous request .. and so on..
  The problem here is that Webservices accepts only SOAP messages but our client will send raw xml messages. Also we need to remember the condition of the previous state.
  I dont know if my assumption that SOAP is used is right.
  Please tell me how to design a raw xml based system without using SOAP messages.
  Thanks
  nithya

  I don't see nothing wrong with your code, there must be something else happening.
  You sure you are not being some proxy server?? but even then you are making a post request so it shouldn't be happening.
  MeTitus

• Sample Configuration For Ethernet over MPLS.

  I am looking for a sample configuration and scenario for the Ethernet over MPLS.I would appreciate if I get some explaination with it.How the LDP is configured for the directed sessions (as per Martini draft) and the auto discovery (as per kompella draft) with respect to Ethernet over MPLS.Cam anyone help me in this ?

  Here's a sample EoMPLS configuration on the PE routers:
  R1:
  interface Loopback0
  ip address 1.1.1.1 255.255.255.255
  interface Ethernet0/0.10
  encapsulation dot1Q 10
  ! 10 = vcid must match the vcid configured on the other side
  mpls l2transport route 2.2.2.2 10
  R2:
  interface Loopback0
  ip address 2.2.2.2 255.255.255.255
  interface Ethernet0/0.10
  encapsulation dot1Q 10
  mpls l2transport route 1.1.1.1 10
  The LDP directed session will be setup automatically by the router when the xconnect statement is configured.
  Cisco IOS doesn't support the Kompella Draft.
  For more information, see the following URL:
  http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t15/atomt/ftatomtb.htm
  Hope this helps,

• Design considerations for mobile version of website

  My company has just implemented a new version of our coporate website using Oracle Portal, and ADF. However we do not have comprehensive mobile support but it is required. From my research I've learned we should be using ADF mobile. However, the resources I have found have been geared more at developers and I work as a Business Analyst. Can you point me to online resources (white papers, tutorials etc.) that deal with requirements and design considerations for porting over to a mobile version?
  Thanks in advance.

  My apologies for lateness in checking this thread.
  Here is an article I wrote that might help. Most of the paper is geared toward developer, but the first few sections talks about best practices for mobile browser app in general, not just for iPhone. http://www.oracle.com/technology/pub/articles/huang-iphone.html
  You can also check out this link: http://www.orato cle.com/technology/tech/wireless/adf_mobile.html.
  As for design consideration, a few rules of thumb:
  - First, obviously use ADF Mobile and Trinidad components. We put a lot of effort in adding rendering support for different mobile devices.
  - Next, figure out what devices you want to support. Browsers found in smartphones varies greatly, and in consumer/feature phones, the support is even less consistent. In general you should be able create one app/set of screens for all mobile devices, but you should plan on having ability to test it out on different devices.
  - Determine what information is really needed by mobile user. Not all information available in desktop application may be applicable for mobile users
  - Design your mobile screens based on a few key principals:
  - Display data as user needs it, instead of trying to display everything. For example, instead of displaying master-detail data on the same screen, break it out into 2 screens. Master data may be a list, and user would click on a particular piece of data to look at the details of that master record.
  - Provide navigation buttons on each screen, and ensure they are easy to get to on a page. For example, using the iPhone paradigm, there is a navigation bar at the top of the page where you can go between views.
  - Place command buttons at location where it's easy for user to get to. For example, if you need to allow user to modify a long list of fields, you may want to place save button on top and button of the screen, so user can easily get to it without having to scroll around too much.
  - Use style sheets to achieve mobile-platform optimized UI. For example, if you intend to support touch screen devices (iPHone, BB Storm, etc), then style your application so buttons, command links, etc, are big enough so it's easy to get to. For non-touch screen devices, then it's OK to compress the UI, but ensure user can easily flow between controls to get to the functionality they need. For example, using a trackball to scroll to a button.
  Thanks,
  Joe Huang

• Best practice MPLS design/configuration for small service provider

  We are a small regional service provider and did not have MPLS supported on our network.  To start supporting MPLS, I’d like to get opinions and recommendations on the best practice configuration. 
  Here is what we have today –
  We have our own BGP AS and multiple /24s.
  We are running OSPF on the Cores and BGP on the Edge routers peering with ISPs.
  We peer with multiple tier-1 ISPs for internet traffic. We do not provide public transit.
  What we want for phase one MPLS implementation –
  Configure basic MPLS /vpn functionality.
  No QoS optimization required for phase 1.
  We have Cisco ME 3600X for  PE. Any recommendations will be appreciated.

  Not sure what kind of devices or routers you have in your network but looks for if you have support for labeled multicast for MVPN support. That will avoid other complexity of using other control protocols (like PIM) in core.
  PE redundancy can be obtained by BGP attributes, CE-PE connectivity can be tunned using IGP or VRRP/HSRP...
  You can have mutiple RSVP TEs for various contract traffic and you can bind various kind of traffic to different RSVP Tunnels based on contract or service with your customer.
  RSVP-TE with link/node protection design will be of great help to achieve quicker failover.

• Best internet access method over MPLS?

  Hello!!
  once again, i have to choose between design opinions and I'd like to hear about your exeperiences... Now referred to internet access.
  I have several customer needing to learn full internet routing and stablishing bgp connection with our PE's (for access backup pourposes).
  When needing to use more specific than default routes, it's said to be more conventient to use global routing tables to distribute full internet routes, in order to save memory on the PE's.
  Now my doubt: if this design forces me to use diferent subinterfaces and VRF's for a client needing both VPN and internet access, and knowing that maybe I could use the same vpn for providing internet to all our customers, sho internet routes will be available in just one VRF... wouldn't it be cleaner using just one vpn (and one vrf in every PE router) for internet access for all the customer (yet Knowing it will use three times more memory)...?
  know ebgp sessions in a PE could be stablished through de internet access vrf. Moreover, any client needing private VPN could use a diferent (sub)interface
  what do you think about? global routes or just one vrf carrying internet routes?
  Thanks in advance

  Well, both are good options, and we have designed networks for SP's with both these options. The deciding factor for them however has been, the requirements form the INternet Service, Wthether this service is for A) End customer who want default or partial/full routing table. Or wtherther this service is for a B) ISP who can serve his TIer 2/3 ISP customer.
  A) For End Enterprise Customers.
  If its meant for end customer who simply want a default route and some customer who may want partial/full routes but who arent ISP's then You can consider the VRF solution, as it would be very easy for you to provision and deprovision within the network. Just a little more load on the memory but since its one VRF your typical PE can handle the Internet in a VRF with 1 gig of MEM.
  B) For Tier2/3 ISP Customers
  Now if its for your T2/T3 ISP customer, then the VRF method has certain drawbacks,
  Drawback ) ISP customers dont want a single best route coming to them from a RR, Since you are their provider ISP you would be having many connection to upstream peering points and NAP/IXP. So your ISP customers want all these routes so they can themselves decide the best route for different service requirements of their end customer.
  Solution) Now if you have to give all these routes to the ISP you have to assign a different RD value for ech upstream peering point,
  Caveat) This ould increase your memory requirement on the PE's and RR's tremendously as they would be holding duplicates of you Internet Routing table bcos of different RD values.
  Differen Approach ) Having said that, some ISP's have implemented the best of both world, but it comes with cost constraints. You can extend you IBGP of the Internet AS withing a VRF, that is infra routes only within VRF and have dedicated Internet Peering Edge Routers at all locations where you consider to provide this service to ISP's, so you extend you IBGP using the VRF, hence none of the P or PE routes hold no internet routes in any form, they only have the infra routes in the VRF. using these Infra routes, the Internet Peering Edge Routers form IBGP with a Internet RR which is your dedciated regular RR for Internet routers, and exchange all internet routes, and give them to your downstream ISP customers.
  Global Routing Table )
  Ntohign wrong with this, method, everything works as it was working before your MPLS network was there, except the fact that your intermediate routers dont hold Internet Tabel and its a BGP Free Core.
  This is better than the VRF option A method
  as you wont hold internet routing table with more memory which is bcos of the VPNV4. And the Second VRF option B is far superior to this method but with added one time cost.
  Hope this info helps u to decide better.
  HTH-Cheers,
  Swaroop

• Need a Effective Design Pattern for Different Validation methods ???

  Hi All,
  I am having different validation methods with separate functions. I like to know the Best and Effective Design Pattern to do this.
  for example
  validateUserId()
  validatePassword()
  validateAuthentication()
  validateSession()
  validateConnection()
  .... etc......
  Can anybody help me to solve this?
  Thanks,
  J.Kathir

  Hi there - is this the kind of thing you wanted?.
  This structure has served me well. There is quite a lot to it and lots you need to infer but you should be able to work it out!
  It works for EJB & swing etc (I believe)..
  It doesn't use exceptions to return validation messages.
  It doesn't use lots of little objects. The code is very explicit & pretty simple.
  public class PersonValidator
  Person myData;
  public PersonValidator() {
  //personId will be 0 and we are in nsert mode
  myData = new Person();
  public PersonValidator(long personId) {
  //personId will have a value and we are in update mode
  myData = PersonDb.getPerson(personId);
  // =================================Single field validation
  // =================================For swing apps to call - not over network.
  // =================================Use validateData method
  public String validateDateOfBirth(String dataOfBirthStr) {
  String msg = "";
  msg = validateDateStr(dataOfBirthStr);
  if (!msg.equals("")) return msg;
  public String validateSurname(String surname) {
  String msg = "";
  if (surname.equals("")) return "surname must be entered";
  //=============================================Cross Validation
  public List crossValidateAndSave(boolean saveData) {
  String msg = "";
  List valerrs = new ArrayList();
  if (surname.equals("Collins") && dateOfBirth.compareTo("???")) {
  List.add("Candidate is lying about their age. Please enter a realistic Date of birth");
  if (valerrs.size() == 0) {
  if (saveData()) {
  personDb.saveData(myData);
  // =========================To validate across the netwrok this lets you
  // pass all the data in 1 go & receive multiple messages in reply.
  // AN EJB can delegate to this code or this code could be in the EJB.
  // @param stopAtFirstMessage flag allow efficiency if app ccan't handle multiple validation
  // erros at a time.
  // @param saveData flag allows validation without saving - allows for confirm message.
  // @param EditPersonGuiData - What the user types in. Numeric data & dates can be
  // in Strings. Using struts this could be the formBean.
  public List validateData(EditPersonGuiData inputData, boolean stopAtFirstMessage, boolean saveData) {
  String msg = "";
  List valerrs = new ArrayList();
  msg = validateDateOfBirth(inputData.dateOfBirth);
  if (!msg.equals("")) valerrs.add(msg);
  if (stopAtFirstMessage) return valerrs;
  valerrs = crossValidateAndSave()
  return valerrs;
  }

• ISA B2B logon  Error: No valid private connection for internet user

  Hello ,
  i used isauseradm to create a user zzweb with all authorizations for B2B..
  now when i try to log to
  http://host:port/b2b/b2b/init.do  with the user zzweb
  i have a runtime error with the logs :
  EXCEPTION]
  #1#com.sap.isa.businessobject.BORuntimeException: Error getting private connection for internet user:com.sap.isa.core.eai.BackendException: Error: No valid private connection for internet userzzweb
       at com.sap.isa.businessobject.BusinessObjectHelper.splitException(BusinessObjectHelper.java:78)
       at com.sap.isa.user.businessobject.UserBase.login(UserBase.java:313)
       at com.sap.isa.businessobject.User.login(User.java:143)
       at com.sap.isa.user.action.UserActions.performLogin(UserActions.java:295)
       at com.sap.isa.user.action.UserActions.performLogin(UserActions.java:368)
       at com.sap.isa.user.action.UserBaseAction.performLogin(UserBaseAction.java:126)
       at com.sap.isa.user.action.LoginBaseAction.ecomPerform(LoginBaseAction.java:77)
       at com.sap.isa.isacore.action.EComBaseAction.doPerform(EComBaseAction.java:353)
       at com.sap.isa.core.BaseAction.execute(BaseAction.java:211)
       at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:484)
       at com.sap.isa.core.RequestProcessor.processActionPerform(RequestProcessor.java:674)
       at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274)
       at com.sap.isa.core.RequestProcessor.process(RequestProcessor.java:391)
       at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1482)
       at com.sap.isa.core.ActionServlet.process(ActionServlet.java:243)
       at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:525)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
       at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.runServlet(FilterChainImpl.java:117)
       at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:62)
       at com.tealeaf.capture.LiteFilter.doFilter(Unknown Source)
       at com.sap.isa.isacore.TealeafFilter.doFilter(TealeafFilter.java:61)
       at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:58)
       at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:373)
       at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
       at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
       at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
       at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
       at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
       at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
       at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
  what does this error means..?
  i also realised that zzweb  was not created in CRM backen? should it be created ?
  many thnx for help ..
  Message was edited by: Blackman

  Its a late response... but if someone gets the same issue here is the solution.
  When you register try uppercase password . That should take care of that issue.
  The problem is with function module CRM_ISA_IUSER_SWITCH , Note 946536.
  Although the note says 5.0 the problem exists with ISA 4.0 too

• Serial Number Not Valid- new Windows 7pro/ fresh install of Creative Suite 5 Design Premium Win from download will not accept license key. This serial number is not valid for this product is the only response.

  Serial Number Not Valid- new Windows 7pro workstation / fresh install of Creative Suite 5 Design Premium Win from download will not accept license key to install. This serial number is not valid for this product is the only response being returned. What am I missing?

  The key is for Creative Suite 5 Design Premium the download is DesignPremium_CS5_5_LS1 and all associated files in the group.

• How to provied Redundancy for VRF MGMT with help of BGP over MPLS(MPBGP)

  Hi,
  Please find the Network Topology.
  This is One Remote site and mamaged by Mgmt office.
  All devices on remote site is accessed by MGMT Office. My organisation seek for Redundancy for Managing devices.
  My administration is from MGW to R1. I am new to MPLS.
  AS u can see in diagram, R1 have 3 VRF(Voice,Signal and MGMT).Currently i have primary link over whitch we are running MPBGP.
  Traffic from these VRF goes to this primary link. Currently Secondary link is not connected.
  Now my organisation proposed for  the  secondary  link  and they want that only traffic from VRF -- MGMT should go through MPLS RTR R2 (the secondary link ) , when the mgmt routes  not learned from MPLS  RTR R1 (Connected to the SP1 ).
  Current  R1 config
  There is IBGP betweem R1 to both MPLS RTR.
  BGP Config
  router bgp 64513
    synchronization disable
    neighbor 10.36.150.1 remote-as 64513
    neighbor 10.36.150.1 activate
    neighbor 10.36.150.1 update-source loopback1
    address-family ipv4 vrf signalling
      redistribute connected
      redistribute static
    $
    address-family ipv4 vrf voice
      redistribute connected
      redistribute static
    $
    address-family ipv4 vrf OAM-T
      redistribute connected
      redistribute static
    $
    address-family vpnv4
      neighbor 10.36.150.1 activate
      neighbor 10.36.150.1 send-community
    $
  !<ospfv2>
  router ospf 100
    interface gei-3/3
      network point-to-point
    $
    network 10.36.150.49 0.0.0.0 area 0.0.0.0  --- loopback ip (Configured)
    network 10.36.149.60 0.0.0.3 area 0.0.0.0 ---- p2p ip bet R1 and MPLS R1.(Configured)
  network 10.36.149.64 0.0.0.3 area 0.0.0.0 ---- p2p ip bet R1 and MPLS R2. ----------  (till now not configured as secondary link is not connected)
  router-id 10.36.150.49
  so what configuration need to done at R1  to achiev the redunancy for MGMT vrf ?
  if possible please reply with sample configuration.
  or
  IN MPBGP protocol, where i will apply routing policy to apply  as- path prepand    so that Route  would be secondary to  neighbor.
  IGP-OSPF and BGP over MPLS is running.
  on Which  address-familiy nbr,should i apply, is it in VPNV4 or IPV4 or IPV4  VRF ?
  if i want 10.36.128.0/26 prefix should go to Neigbhor MPLS R2, what should i use access-list or Prefix list?
  please provide the reply with its config .
  thanks in advance,
  Regards,
  Ajay
  Message was edited by: Ajaykumar yadav

  Hi,
  Please find the Network Topology.
  This is One Remote site and mamaged by Mgmt office.
  All devices on remote site is accessed by MGMT Office. My organisation seek for Redundancy for Managing devices.
  My administration is from MGW to R1. I am new to MPLS.
  AS u can see in diagram, R1 have 3 VRF(Voice,Signal and MGMT).Currently i have primary link over whitch we are running MPBGP.
  Traffic from these VRF goes to this primary link. Currently Secondary link is not connected.
  Now my organisation proposed for  the  secondary  link  and they want that only traffic from VRF -- MGMT should go through MPLS RTR R2 (the secondary link ) , when the mgmt routes  not learned from MPLS  RTR R1 (Connected to the SP1 ).
  Current  R1 config
  There is IBGP betweem R1 to both MPLS RTR.
  BGP Config
  router bgp 64513
    synchronization disable
    neighbor 10.36.150.1 remote-as 64513
    neighbor 10.36.150.1 activate
    neighbor 10.36.150.1 update-source loopback1
    address-family ipv4 vrf signalling
      redistribute connected
      redistribute static
    $
    address-family ipv4 vrf voice
      redistribute connected
      redistribute static
    $
    address-family ipv4 vrf OAM-T
      redistribute connected
      redistribute static
    $
    address-family vpnv4
      neighbor 10.36.150.1 activate
      neighbor 10.36.150.1 send-community
    $
  !<ospfv2>
  router ospf 100
    interface gei-3/3
      network point-to-point
    $
    network 10.36.150.49 0.0.0.0 area 0.0.0.0  --- loopback ip (Configured)
    network 10.36.149.60 0.0.0.3 area 0.0.0.0 ---- p2p ip bet R1 and MPLS R1.(Configured)
  network 10.36.149.64 0.0.0.3 area 0.0.0.0 ---- p2p ip bet R1 and MPLS R2. ----------  (till now not configured as secondary link is not connected)
  router-id 10.36.150.49
  so what configuration need to done at R1  to achiev the redunancy for MGMT vrf ?
  if possible please reply with sample configuration.
  or
  IN MPBGP protocol, where i will apply routing policy to apply  as- path prepand    so that Route  would be secondary to  neighbor.
  IGP-OSPF and BGP over MPLS is running.
  on Which  address-familiy nbr,should i apply, is it in VPNV4 or IPV4 or IPV4  VRF ?
  if i want 10.36.128.0/26 prefix should go to Neigbhor MPLS R2, what should i use access-list or Prefix list?
  please provide the reply with its config .
  thanks in advance,
  Regards,
  Ajay
  Message was edited by: Ajaykumar yadav

• Creative Suite 6 Design Standard (for Mac) keeps asking for the Serial Number ... over and over!

  My iMac has a well-installed Creative Suite 6 Design Standard. I have a valid serial (purchased it) and it works fine. Every couple of months though the Adobe Application Manager pops up and asks me wether I want to continue the test-period or if I am willing to enter the serial number. So I dig into my papers and get the serial number out ... it is accepted every time and works fine then. But after some time - there we go again: I have to enter the number.
  I faced this issue a while ago and read that it was recommended to update the Application Manger - which I did. But ... still being bothered by these kinds of questions from time to time.
  What can I do?
  Information
  27" iMac with Mac OS X 10.6.8 (it is not possible to update the OS --- this is the reason why I am running CS6)
  Creative Suite 6 Design Standard for Mac

  You can choose to get the product activated offline: http://helpx.adobe.com/x-productkb/policy-pricing/activation-network-issues.html#Activate your software offline
  Please refer to :
  Sign in, activation, or connection errors | CS5.5 and later
  Re: Mac OSX Photoshop CS6 keep asking for serial number
  Re: Photoshop CS6, non Creative Cloud, keeps asking me to register
  Hope these help you.
  Regards
  Rajshree

• Apex3 on XE over SSL for internet users

  Folks,
  I've been thrown in the deep end - I've created an Intranet in Apex3 on XE and now I need to make it available to outside parties over the internet. Due to the nature of the content it really should be only be available over SSL.
  I have seen by other posts that suggest running Apache as a proxy for XE/Apex is the way to go and found what I thought was the answer on Apache's site (http://httpd.apache.org/docs/2.2/ssl/ssl_howto.html) as well as defaulting Apache to an Apex site (APEX charts and reverse proxy (Houston we have a problem!!)
  However I don't seem to be able to marry up these settings (not being an Apache guru) into one solution for Apache defaulting to an Apex app (for intranet users) AND the same app but running under SSL for internet users !
  Any assistance would be greatly appreciated !!

  Wayne,
  This is discussed on the XE forum over here:
  How to Enable SSL in Oracle XE
  Joel

• I am using several Macs running Yosemite. I was recently "upgraded" to Xfinity's new cable modem which can support both 2.5Ghz and 5Ghz networks at the same time. Actually I can connect to the internet over both with a satisfactory bump in speed for

  I am using several Macs running Yosemite. I was recently “upgraded” to Xfinity’s new cable modem which can support both 2.5Ghz and 5Ghz networks at the same time. Actually I can connect to the internet over both with a satisfactory bump in speed for the Ghz. However when I connect to the 5Ghz the Time capsule disappears from the Airport Utility and claims to be Not Found. Is there something I have done wrong or just a Yosemite Teething Problem

  First restart your mac and try again.
  It could be
  that the router and the TC are interfering wirelessly with each other.
  You can check this by pressing the option key while clicking on the wireless icon on your screen
  Open Wireless Diagnostics
  enter your user password
  Press CMD 4 then Scan
  You will see all the wireless channels being used in your location and you can check if they are on the same channel
  Make the SSID for the TC simple like MyTC
  Set 5Ghz to auto
  Update the TC
  Try again
  Ted

• SCCM design DMZ for intranet and internet clients

  Hello,
  I am looking for some design recommendations for my test environment that I would like to apply to one production environment (I already posted about this topic but I still have some questions).
  I am working with 2 domains (2 forests) with no trust relationships.
  Domain A : internal
  Domain B : DMZ
  From a firewall point of view, only the ports from the internal to the DMZ will be opened.
  From the internet to the DMZ, only HTTPS will be opened.
  Currently, I only manage the clients connected to the internal domain.
  I would like to deploy a new management point in DMZ that will allow me to manage my DMZ clients (servers) and my Internet clients (laptops).
  Should I use 2 management points ? Is it supported ?
  - one for the DMZ clients
  - one dedicated to my internet clients
  If I use only one MP, should I allow Intranet and Internet clients ?
  Should I allow my DMZ clients to communicate with the internal management point (port 80) and only use the MP in DMZ for my Internet clients.
  The only documents I can find on Technet require too many ports to be opened in the firewall (From DMZ to Internal) and can't be applied to my environment.
  Thanks.

  Have a look at the following blog which explains your queries comprehensively.
  http://blogs.technet.com/b/neilp/archive/2012/08/20/cross-forest-support-in-system-center-2012-configuration-manager-part-1.aspx
  -RG

• Is jdbc thin driver not designed for internet use?

  Is jdbc thin driver not designed for internet use?
  The size of the thin-driver file is about 1MB of size and is
  too large if were to ask clients to download it from the
  internet.
  Can anyone advise on this issue?
  null

  You need to remote onto the server and go into start->control panel-Administration-> ODBC (or sometimes start->administration->ODBC) and set up ODBC connections . Make sure you set them up on the system tab, then you should see them in EAS. I don't remember, b ut don't think you need to restart the Essbase servise for them to take effect