Expose services on XI to the outside network

Similar Messages

• Best Practice on Not Exposing your internal FQDN to the outside world

  Exchange server 2010, sits in DMZ, internet facing. The server is currently using the Default Receive Connector. This exposes the internal fqdn to the outside world (ehlo). Since you should not (can't) change the FQDN on your Default Receive connector, what
  is the best practice here?
  The only solution I can see is the following:
  1. Change the Network on the Default Receive Connector to only internal IP addresses.
  2. Create a new Internet Receive Connector port 25 for external IP addresses (not sure what to put in Network tab?) and use my external FQDN for ehlo responses (e.g. mail.domain.com)
  3. What do I pick for Auth and Permissions, TLS and Annoymous only?
  Michael Maxwell

  Yes, it fails PCI testing/compliance. I shouldn't be able to see my internal server and domain. I understand that is the recommendation, but my client doesn't want to host in the cloud or go with a Trend IHMS (trust me I like that better, but its
  not my choice). I have to work with the deck of cards dealt to me. Thanks, just want a solution with what I have now.
  Michael Maxwell
  Understand. I wont go into the value of those tests  :)
  If the customer is really concerned about exposing the internal name, then create a new receive connector with a different FQDN  ( and corresponding cert)  for anonymous connections as you mention above. Know that  it also means internal clients
  can connect to the server on port 25 as well if you dont have the ability to scope to set of ip addresses ( i.e. a SMTP gateway).
  The internal names of the servers will also be in the internet headers of messages sent out:
  http://exchangepedia.com/2008/05/removing-internal-host-names-and-ip-addresses-from-message-headers.html
  http://www.msexchange.org/kbase/ExchangeServerTips/ExchangeServer2007/SecurityMessageHygiene/HowtoremoveinternalservernamesandIPaddressesfromSMTPheaders.html
  Twitter!:
  Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

• [SOLVED] Creating an invisible-to-the-outside network with Arch

  Hi All,
  I want to create an internal network to share access to a larger business network and to the outside world.
  Essentially, I want to create a small network that is invisible to the other machines and routers of our network, but which shares all ports.  My current thinking right now is to buy a network card for my desktop, connect it to a wifi router(specifically this one as it has enough power to reach a few rooms over), and create a wifi network with a hidden-SSID.
  I will then set up port forwarding on my desktop to share my primary ethernet network with the wifi network on my other ethernet card.
  I don't know very much about networking though, so I want to know if this setup will be visible to the greater network, or if it will be hidden?  Also, is that a good wifi router to get for this purpose, and does it matter which ethernet card I get?
  Thanks for your help with this, I realize this a pretty disjointed question - with hardware, software, and random networking questions all mixed together.
  -Mike
  Last edited by MikeDacre (2014-10-14 16:10:35)

  This is actually very simple to do. The wifi router I mentioned in my previous post works well, and any old ethernet card with a chipset supported by the current kernel (most of them), will work too. Then all you do is connect the server to the 'modem' port of the router via an ethernet cable, and configure some sort of dhcp server like dhcpd or dnsmasq to give the wifi router an IP. To share the internet with it, forward your internet connection with iptables and you are good. If you want to also connect to the wifi with the server - for example because that makes file sharing easier - then you need to be a little careful with your routing table to make sure you don't try to connect to the net via the wifi connection.
  Most routers support hidden SSIDs, just log in to the router and configure that directly.
  Hey presto, you are done, you have a hidden wifi network that allows other machines to connect to the net through your server.

• The exposed service is in the right lane in BPEL converted from JPD

  Hi,
  Now I'm working on a project that requires using Fusion to replace the old WLI.
  My major job is to convert JPD code in WLI to BPEL in fusion. (The JPD code was developed based on Weblogic Integration 8.1 )
  I use a plugin for WebLogic Workshop 8.1 to export JPDs file into BPELs directly.
  After some minor changes, the BPEL exported from JPD can be run on the server.
  But when I open the BPEL in the visual designer in JDeveloper 11g, I see something strange.
  According to my understanding, all exposed services should be placed in the left lane, and all referenced services should be placed into the right lane.
  In the exported BPEL composite, when I open the composite.xml file in the visual designer, I can see all the services are in the right places.
  But when I click into the BPEL process, I see all service are placed into the right lane, including the exposed service.
  This really confuses me.
  I tried to read the xml code of composite and BPEL to understand why in BPEL designer, even the exposed service is placed into the right lane. But I haven't got an answer.
  I also tried to write a BPEL process by myself, but the exposed service icon cannot be moved to the right lane.
  Does anyone has any ideas on this issue? Does oracle has some special way to deal with the code exported from JPD?
  Actually, this issue doesn't cause any error in my application. I'm just curious why it happens.
  Thanks in advance.

  Hi,
  I am also doing the same thing what you have done, please help me.
  I have used BPEL export utility for exporting my JPDs to BPEL. but it was not a good help, ultimately i m creating a process manually.
  the main problem what is the replacement of control(jcx files)
  please guide me really it would be great help..
  Thanks in advance and hope to hear from you.
  my mail id is [email protected]
  please send some document if you have...

• How to expose a web service to the outside world?

  Hello,
  i have created a Web service from a Session bean and successfully published it on one of my UDDI registries using the Admin tool.
  At this point, what do I need to do further in order to expose this Web service not just in our LAN but to the outside world?
  Roy

  Offcourse it should be published at UDDI.
  Four play  key roles in Web services: Universal Description, Discovery and Integration (UDDI), Web Services Description Language (WSDL), Web Services Inspection Language (WSIL), SOAP, and Web Services Interoperability (WS-I).
  The UDDI specification defines open, platform-independent standards that enable businesses to share information in a global business registry, discover services on the registry, and define how they interact over the Internet.
  See this link too:
  http://help.eclipse.org/help32/index.jsp?topic=/org.eclipse.jst.ws.consumption.ui.doc.user/concepts/cwsdlud.html
  Regards, Suresh KB

• SQL Service Broker 2012: the connection was closed by the remote end, or an error occurred while receiving data: '64(The specified network name is no longer available.)'

  Anyone can help with the below issue please? Much appreciated.
  We have about 2k+ messages in sys.transmission_queue
  Telnet to the ports 4022 is working fine.
  Network connectivity has been ruled out.
  The firewalls are OFF.
  We also explicitly provided the permissions to the service account on Server A and Server B to the Service broker end points.
  GRANT
  CONNECT ON
  ENDPOINT <broker> <domain\serviceaccount>
  Currently for troubleshooting purposes, the DR node is also out of the Availability Group, which means that we right now have only one replica the server is now a traditional cluster.
  Important thing to note is when a SQL Server service is restarted, all the messages in the sys.transmission queue is cleared immediately. After about 30-40 minutes, the errors are continued to be seen with the below
  The
  connection was
  closed by the
  remote end,
  or an
  error occurred while
  receiving data:
  '64(The specified network name is no longer available.)'

  We were able to narrow down the issue to an irrelevant IP coming into play during the data transfer. We tried ssbdiagnose runtime and found this error:
  Microsoft Windows [Version 6.1.7601]
  Copyright (c) 2009 Microsoft Corporation.  All rights reserved.
  C:\Windows\system32>SSBDIAGNOSE -E RUNTIME -ID 54F03D35-1A94-48D2-8144-5A9D24B24520 Connect to -S <SourceServer> -d <SourceDB> Connect To -S <DestinationServer> -d <DestinationDB>
  Microsoft SQL Server 11.0.2100.60
  Service Broker Diagnostic Utility
  An internal exception occurred: Timeout expired.  The timeout period elapsed prior to completion of the operation or the server is not responding.
  P  29830                                 Could not find the connection to the SQL Server that
  corresponds to the routing address tcp://XX.XXX.XXX.199:4022. Ensure the tool is connected to this server to allow investigation of runtime events
  The IP that corresponds to routing address is no where configured within the SSB. We are yet unsure why this IP is being referred despite not being configured anywhere. We identified that this IP belongs to one of nodes other SQL Server cluster, which has
  no direct relation to the source server. We failed over that irrelevant SQL Server cluster and made another node active and to our surprise, the data from sys.transmission_queue started flowing. Even today we are able to reproduce the issue, if we bring
  back this node [XX.XXX.XXX.199] as active. Since, its a high business activity period, we are not investigating further until we get an approved downtime to find the root cause of it.
  When we get a approved downtime, we will bring the node [XX.XXX.XXX.199] as active and we will be running Network Monitor, Process Monitor and the SSB Diagnose all in parallel to capture the process/program that is accessing the irrelevant IP.
  Once, we are able to nail down the root cause, I will share more information.

• Can not access CRM from outside the office network - Access denied You do not have sufficient access rights or privileges to perform this action.

  Hi,
  I can not access CRM from outside the office network - Access denied You do not have sufficient access rights or privileges to perform this action.  I can access CRM with same user id and password from our office inside the network.  I can get
  the page to give login details once I have login details I got below error. Please help me to solve this issue.  It was working before.
  Access denied You do not have sufficient access rights or privileges to perform this action. 
  Regards,
  Noushad
  [email protected]

  On Premise system Configured with AD FS server for claims-based authentication you need to update your host file with server url to access it from outside office network.
  Refer
  this on how to update host file.
  Regards, Saad

• Many of the times my Iphone 5s shows "No Service" in the specific network area, but if the same sim card is used with other mobiles in the same network area, it shows good network.. i did restore but still not working.. please help me..

  My Iphone 5s shows "No Service" in the specific network area, but if the same sim card is used with other mobiles in the same network area, it shows good network.. i did restore,change sim card, reset all the settings but still not working... please help me..

  Please do not double post a subject. Iphone 5S  I answered your other thread.

• Eversince I updated my iphone 4 to IOS 5.0.1, sometimes I get a 'No Service' or 'Searching'  signal where my network signal should be upon which I have  to 'Reset all Settings' to get the phone normal again.Is  there a solution to this?

  Eversince I updated my iphone 4 to IOS 5.0.1, sometimes I get a 'No Service' or 'Searching'  signal where my network signal should be upon which I have switch the phone off then on then 'Reset all Settings' to get the phone normal again.Is  there a solution to this?

  I couldn't find the edit button on my original post so I am posting an update here.
  I have gone through more apps and have had good luck on all but one more.  And it's not that the app doesn't work, I am talking about the Yahoo Weather app, It works fine, but when you swipe between cities the screen lags a bit and it sometimes doesn't move between pages the way it should.  On iOS 7.1.2 it was smooth as butter but on iOS 8.0, not so much.  I will post a note in the app store to let them know.  I really like the Yahoo app better than the new stock app.
  I have been going through my games and they all work fine. Angry Birds (Original and Stella), Canabalt, Minecraft, Bejeweled 2, Silly Walks, PopWords, Doodle Jump, Deep Green all seem to work just fine. 
  Starbucks app works as it should. 
  I will stop back again next week after I have had the weekend to play with it in detail and post my thoughts again.

• Mac os x server profilemanager is not available outside the local network

  Hi,
  I have some trouble using the profilemanager. Planed is to install the server for configuring and supporting our iPhone user
  Its a mac mini with OS X Server installed. I've just activated the Websites, OpenDirectory and Profilemanager service. I added the Server to our AD and I'am able to choose the User to allow them to log on to the profilmanager. No problems so far.
  But then I added a port forwarding to our firewall with this ports -> http://support.apple.com/kb/HT5302?viewlocale=de_DE to the server.
  Then I logged on to a external client pc and opened the url forwarded to our ip. The first website with the server logo I got. But if i try to open a subfolder like /profilemanager I get only a white screen without any content. Just a title "Admin" is shown in the browser tab.
  Then I tried it with a local client. This client located in the same IP range can open the subfolders without any problems.
  Whats the problem here? Just a parameter in the server config that tells him to deny connections from external?
  Marcel

  Did you set up your ftp clients outside your LAN to use passive FTP.
  Active FTP uses a control channel on port 21 and a data channel which is on a non predictive port.
  This does not work behind a NAT Router.
  Greetings
  Martin

• Many of the times my Iphone 3G 16GB shows "No Service" in the specific network area, but if the same sim card is used with other mobile handset in the same network area its shows full network, Is this a Iphone 3G Handset problem or is network

  Many of the times my Iphone 3G 16GB shows "No Service" in the specific network area, but if the same sim card is used with other mobile handset in the same network area its shows full network, Is this a Iphone 3G Handset problem or is it a problem with network service provider for iphone in india with Airtel.

  Try to reset Network setting thru (Setting/General/Reset/Reset Network Setting - after clicking on it the phone will ask to reboot)
  According to my R&D I have experienced that one must reset the network each time when we r at home or in office or other places, the phone after resetting the network setting acquires the area specific network setting n works well, try it & if any other solution do let me known
  Calling up customer care did not help me, they do keep us in a loop with the same old answeres that “Our technical team is working on it & WILL GET BACK TO u” leaving us with no solution at the end
  Try what I suggest think to will help u

• HT4245 When I try to activate iMessage and while I write my correct password I I receive message say that my user name and password is incorrect although I was use iMessage service on the same network (etisalat ) U.A.E  before I update to ios6

  When I try to activate iMessage and while I write my correct password I I receive message say that my user name and password is incorrect although I was use iMessage service on the same network (etisalat ) U.A.E  before I update to ios6
  Note : my iPhone is been swapped 2 weeks ago and I already erase all data in old I phone

  1) Go here: http://www.apple.com/support/appleid/manage/
  2) Click on Sign in to manage your Apple ID
  3) Click on Manage your Apple ID
  4) Type in your Apple ID and Password and click Sign in
  5) Select Addresses from the left hand side
  6) Click Edit
  7) In country region type United Kingdom
  8) Click Save at the bottom of the page
  9) Go to your Apple Device Settings - General - International - Region Format - Select United Kingdom
  10) Press the Home button
  11) Log into Facetime and iMessage with your CORRECT APPLE ID AND PASSWORD
  This should work for all of you guys. Hope it helps.

• Can't remember how to access voicemail from a landline or phone outside the verizon network?

  Can't remember how to access voice mail from a land line or a mobile phone outside the Verizon network?

  Dial your full 10-digit number, then hit the * key whenyour voicemail answers.  It will ask for your password and you will be connected to your voicemail as if you were on your phone.

• TS1398 My ipad will not connect to other wifi networks. It has connected to my main home network but will not connect to the booster network in my home (it has previously!) It will also not connect to other networks outside my home.

  Hi
  I just got new router and had to reset my network settings on IPad. Since then, my ipad will connect onto the main home network but will not attach to my extension booster (netgear) which is linked to the home network. It will also not attach to networks outside my home that it has previously worked with. i have reset the settings again, powered off and on again, updated to the latest IOS update, but nothing is working. Please help, as I can only use wifi in a few rooms in my house and i do not have 3G on my my ipad.

  Did you try forgetting the network and starting all over again?
  Settings>WiFi>Network Name>Tap the blue arrow>Forget this Network. Restart your iPad and then try joining again.
  Try rebooting your router. Even though everything else may be connecting to your Network, it might help with the iPad. Unplug the router for about 30 seconds and then plug it in again.
  Reset Network settings on the iPad?
  Settings>>General>Reset>Reset Network Settings. You will have to start all over again, Tap WiFi in the settings, find your network and enter the password.

• We are a two iPhone family, both on the same service provider. My wires iPhone is unable to connect to the home network where as mine is! In the settings her phone has no details for the IP address etc where as mine does! I cannot even enter the details.

  We are a two iPhone family, both on the same service provider. My wires iPhone is unable to connect to the home network where as mine is! In the settings her phone has no details for the IP address etc where as mine does! I cannot even enter the details manually.
  I have done resets on off and nothing? HELP!

  What is that and how. I have 3 airports all configured identically and connected to one router via ethernet!
  A power cycle is powering down for ~ 1 minute and powering back up.