Skip to main content link. Accesskey S
  • Help
  • HCL Logo
  • HCL Sametime wiki
  • THIS WIKI IS READ-ONLY. Individual names altered for privacy purposes.
  • HCL forums and blogs
  • Home
  • Product Documentation
  • Community Articles
  • Learning Center
Search
Community Articles > Sametime Gateway > Deploying a DMZ XMPP proxy server for Sametime Gateway
  • Share Show Menu▼
  • Subscribe Show Menu▼

Recent articles by this author

Sametime & iNotes Integration Guide
Configure Sametime awareness in iNotes

Sametime Meetings Audio/Video Guide
This guide provides best practices and troubleshooting tips for running successful AV meetings in Sametime.

Installing the Sametime WebPlayer for Chrome in Windows
This article explains how to install the Sametime WebPlayer plug-in for Google Chrome on Windows to provide additional features to users.

Sametime WebPlayer installation and troubleshooting
This article explains how to install the Sametime On-Premises WebPlayer plug-in to provide additional features to users. In addition to installation procedures, the article provides guidance for troubleshooting installation problems.

Command line user management
You can manage users in IBM® Sametime® Advanced by running the stlicadmin command line tool. The tool has commands for adding and removing users.
Community articleDeploying a DMZ XMPP proxy server for Sametime Gateway
Added by ~Nicole Cisponetherettu | Edited by ~Nicole Cisponetherettu on November 5, 2013 | Version 2
  • Actions Show Menu▼
expanded Abstract
collapsed Abstract
Enhance security by deploying an XMPP proxy server as a separate cell that resides in a DMZ between IBM® Sametime® Gateway servers and the Internet.
The attached guide (PDF format) explains how to reduce connectivity risks by using a dual-DMZ topology and deploying the XMPP proxy server used by Sametime Gateway in the additional DMZ.

DMZ XMPP proxy server

The DMZ XMPP proxy server is the same J2EE application that Sametime Gateway uses for the conventional XMPP server. The difference is how you deploy it: you deploy the DMZ XMPP server in a different cell from Sametime Gateway, and you set up a firewall between the Sametime Gateway servers and the DMZ XMPP proxy server. The use of a separate cell and an additional firewall provide added security to your Sametime deployment.

To deploy the DMZ XMPP proxy server, you will set up a dual DMZ deployment where the Sametime Gateway servers reside in the Application DMZ and the DMZ XMPP proxy server resides in the Web DMZ. External XMPP users can access only the DMZ XMPP proxy server, which passes requests for data to the Sametime Gateway servers, which in turn connect to the Sametime Community Servers on the corporate intranet before routing data back to the users.

Note that the DMZ XMPP proxy server is not secured like the WebSphere DMZ Secure Proxy Server, because the XMPP application is installed on a WebSphere Application Server. However, deploying the DMZ XMPP in an dual-DMZ configuration does provide more security than installing it within the base DMZ.

  • Actions Show Menu▼


expanded Attachments (1)
collapsed Attachments (1)
Edit the article to add or modify attachments.
File TypeSizeFile NameCreated OnDelete file
application/pdf 1,722 KB nov2013_STGW_DMZ_XMPP_Proxy_Guide.pdf 11/5/13, 1:37 PM
expanded Versions (2)
collapsed Versions (2)
Version Comparison     
VersionDateChanged by              Summary of changes
This version (2)Nov 5, 2013, 1:56:19 PM~Nicole Cisponetherettu  New version of PDF (Nov 2013)
1Oct 4, 2013, 6:21:36 PM~Vijay Prefoomargon  
expanded Comments (0)
collapsed Comments (0)
Copy and paste this wiki markup to link to this article from another article in this wiki.
Go ElsewhereStay ConnectedAbout
  • HCL Software
  • HCL Digital Solutions community
  • HCL Software Support
  • BlogsDigital Solutions blog
  • Community LinkHCL Software forums and blogs
  • About HCL Software
  • Privacy
  • Accessibility