| Author |
Message |
Steve
Guest
|
 Posted:
Mon Jan 03, 2005 8:15 pm Post subject:
TCP, Firewall, Certificates - Question |
|
|
In the midst of setting up LCS 2005 SE
Network is 1 LCS, 1 forest, 1 domain, Windows Messanger 5.1
Multiple subnets but they are firewalled
I know you can run a single LCS using TCP for client-server communication.
However, I thought that TCP could not traverse a firewall???
I was under the impression that in order to traverse a firewall the
client-server communication had to be TLS.
Anyone know if this is true or if there is a way around this so you can use
TCP in a VERY firewall segmented network? |
|
| Back to top |
|
 |
Dhigha D Sekara
Guest
|
| Posted:
Fri Jan 07, 2005 3:07 am Post subject:
Re: TCP, Firewall, Certificates - Question |
|
|
Steve,
WM 5.1 was modifed to work with NATs underTCP.
LCS 2005 supports a pool model where clients can sign in via a NAT-ed Load
balancer. WM5.1 clients will be able to sign in to a LCS 2005 pool via a LB.
Thanks,
dhigha
--
This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send email to this address, post a reply to this newsgroup
"Steve" <Steve@discussions.microsoft.com> wrote in message
news:9B1E7E2E-84B3-4996-B4ED-60648ECD88B1@microsoft.com...
| Quote: | In the midst of setting up LCS 2005 SE
Network is 1 LCS, 1 forest, 1 domain, Windows Messanger 5.1
Multiple subnets but they are firewalled
I know you can run a single LCS using TCP for client-server communication.
However, I thought that TCP could not traverse a firewall???
I was under the impression that in order to traverse a firewall the
client-server communication had to be TLS.
Anyone know if this is true or if there is a way around this so you can
use
TCP in a VERY firewall segmented network? |
|
|
| Back to top |
|
|
Steve
Guest
|
| Posted:
Sun Jan 09, 2005 7:31 am Post subject:
Re: TCP, Firewall, Certificates - Question |
|
|
Dhigha,
Thank you for that info. Is that documented somewhere (I must have missed
it on MS's site)?
Was that the only reason TCP didn't traverse a firewall? I thought it was
also because within IP Payloads (for SIP) the IP and/or Port info is stored
and a firewall can't open the payload to determine this info?
"Dhigha D Sekaran<msft>" wrote:
| Quote: | Steve,
WM 5.1 was modifed to work with NATs underTCP.
LCS 2005 supports a pool model where clients can sign in via a NAT-ed Load
balancer. WM5.1 clients will be able to sign in to a LCS 2005 pool via a LB.
Thanks,
dhigha
--
This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send email to this address, post a reply to this newsgroup
"Steve" <Steve@discussions.microsoft.com> wrote in message
news:9B1E7E2E-84B3-4996-B4ED-60648ECD88B1@microsoft.com...
In the midst of setting up LCS 2005 SE
Network is 1 LCS, 1 forest, 1 domain, Windows Messanger 5.1
Multiple subnets but they are firewalled
I know you can run a single LCS using TCP for client-server communication.
However, I thought that TCP could not traverse a firewall???
I was under the impression that in order to traverse a firewall the
client-server communication had to be TLS.
Anyone know if this is true or if there is a way around this so you can
use
TCP in a VERY firewall segmented network?
|
|
|
| Back to top |
|
|
Dhigha D Sekara
Guest
|
| Posted:
Tue Jan 11, 2005 1:29 pm Post subject:
Re: TCP, Firewall, Certificates - Question |
|
|
I guess it is called out in the Loadbalancer deployment section of the
documentation.
There were some minor protocol modifications made to make it work.
--
This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send email to this address, post a reply to this newsgroup
"Steve" <Steve@discussions.microsoft.com> wrote in message
news:2D5C5C7E-4E8C-4036-8620-34EA7A124F98@microsoft.com...
| Quote: | Dhigha,
Thank you for that info. Is that documented somewhere (I must have missed
it on MS's site)?
Was that the only reason TCP didn't traverse a firewall? I thought it was
also because within IP Payloads (for SIP) the IP and/or Port info is
stored
and a firewall can't open the payload to determine this info?
"Dhigha D Sekaran<msft>" wrote:
Steve,
WM 5.1 was modifed to work with NATs underTCP.
LCS 2005 supports a pool model where clients can sign in via a NAT-ed
Load
balancer. WM5.1 clients will be able to sign in to a LCS 2005 pool via a
LB.
Thanks,
dhigha
--
This posting is provided "AS IS" with no warranties, and confers no
rights.
Please do not send email to this address, post a reply to this newsgroup
"Steve" <Steve@discussions.microsoft.com> wrote in message
news:9B1E7E2E-84B3-4996-B4ED-60648ECD88B1@microsoft.com...
In the midst of setting up LCS 2005 SE
Network is 1 LCS, 1 forest, 1 domain, Windows Messanger 5.1
Multiple subnets but they are firewalled
I know you can run a single LCS using TCP for client-server
communication.
However, I thought that TCP could not traverse a firewall???
I was under the impression that in order to traverse a firewall the
client-server communication had to be TLS.
Anyone know if this is true or if there is a way around this so you can
use
TCP in a VERY firewall segmented network?
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in