Question

Notes through a firewall

Asked by: philsmicronet

I have an internet notes server on one side of a Firewall that needs to talk to 3 notes servers on the other side. I can open up port 1352 to talk to one of the servers, however, I can only direct one port to one IP address. Can I get notes to talk to another notes server on a different port Number

This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2000-02-29 at 20:58:19ID10303287
Tags

1352

,

port

Topic

Lotus Notes

Participating Experts
2
Points
100
Comments
7

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. Zyxel Router as a firewal
    I have a small network of 25 Workstations connected to a Zyxel Prestige 100 Router. There is no proxy server or hardware firewall, except for the filters that can be accessed from the router menu. My question is - Is there an easy way to set up these filters to act as a dece...
  2. How to revert this firewal configuration?
    [root@machine1 monit-5.0-beta1]# iptables -A INPUT -i eth1 -p tcp --destination-port 25 -j ACCEPT [root@machine1 monit-5.0-beta1]# iptables -A INPUT -i eth1 -p tcp --destination-port 2812 -j ACCEPT I used the above commands to open the ports in my firewall .... actully i d...
  3. Can you explain this firewal rule ?
    Can some one please explain these firewall rule ?

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: fredriknorlingPosted on 2000-03-01 at 00:12:08ID: 2571788

You can´t setup notes to use diffrent ports but couldn´t you let the 3 servers on the inside initiate the replication or what you want to do ?

/Fredrik

http://surf.to/LotusNotes

 

by: rfharrisPosted on 2000-03-01 at 13:40:59ID: 2574366

If indeed your firewall will only permit one inbound IP address to be mapped to a given port (1352) then you may want to use 'passthrough.'  Passthrough connections allow Notes communication *through* a specified server.  

Rough approximation of Steps ...
1.  Modify the server doc of server currently reachable on the inside of the FW to permit passthrough connections.  You will need to add your internet server and any external other servers/users you wish to the field labeled "Route Through" in the Security/Passthrough section of the server doc.

2.  Modify the server docs of the other two internal servers to accept passthrough connections.  You will need to add the same community of servers/users as mentioned in step 1 to the field labeled "Access this server" in the same Security/Passthrough section.

3.  Create (or rewrite as needed) passthrough connection documents from your internet server to the two internal servers that are now reachable *through* the first server.

-- Rhonda

 

by: philsmicronetPosted on 2000-03-01 at 14:33:18ID: 2574518

I have seen on notes.net that it does seem to be possible, however, no one has listed the steps involved.

 

by: rfharrisPosted on 2000-03-01 at 17:25:36ID: 2574929

Yes - changing the port is possible -- but not recommended.  Have you considered the other ramifications changing Notes port may have on your overall communication architecture?

 

by: rfharrisPosted on 2000-03-01 at 17:29:24ID: 2574940

If you are really, really sure you want and need to change the port ... instructions below.  


Changing the Notes Specific TCP/IP Port Number

Problem:
How can an administrator correctly change the Notes TCP/IP Port Number under Windows 95 or Windows NT 4.0 platforms?

Solution:
(Note the term "Notes is used throughout this document, however, this procedure also applies to the Lotus Domino 4.5x Server Powered by Lotus Notes).

Changing the TCP port address on a Notes server is a two-step process.

1. Modify the services file located on NT in \WINNT\System32\drivers\etc\ (or for Windows 95, the \WIN95\ directory).

2. Add the line PORTNAME_TCPIPAddress= to the NOTES.INI file.


1.1) Editing the Services File: TCP Ports Used by Notes

By default, Notes servers use the TCP port 1352 when listening for Notes Client connections.  This port number was assigned to Lotus Notes by the Internet Assigned Number Authority (IANA), so it is unlikely to conflict with any other application on the network.  Notes clients, on the other hand, use dynamic port numbers which the TCP/IP network software chooses from a range of numbers that are made available for this purpose.  A client that connects to a Notes server connects to server port 1352.

To use a different port number for servers, configure the TCP/IP service "lotusnotes" in the manner appropriate to the network. This is generally done by adding a line to a file named SERVICES, which is normally located in a directory called \etc\ .

The configuration line should resemble the following:

Lotusnotes portnumber/tcp # LotusNotes \

....where portnumber is the TCP port of your choice.  It is very important to edit this file on every Notes Client and Notes Server that is communicating.

For example: To have the Notes Server use port 5000, you would add the following line to the SERVICES file:

Lotusnotes      5000/tcp      #LotusNotes

Note that the SERVICES file has no extension, much like the IP host file.  Once you open the SERVICES file with a text editor (such as Notepad) you will see how the file is constructed.

2.1) Edit the NOTES.INI File of Each Server or Partitioned Server to Include:
PORTNAME_TcpIpAddress=0,IPaddress:1352
....where PORTNAME is the port name as defined in FILE, TOOLS, USER PREFERENCES, PORTS on the Notes Server's workstation, and IPaddress is the TCP/IP address of a specific partitioned Notes Server.  For example:

If the port name were "TCPIP" and the IP address of the machine were 192.94.222.169 and you wanted it to use port 5000, the line added to the NOTES.INI would be:

TCPIP_TcpIpAddress=0,192.94.222.169:5000

NOTE:  Recall that on a LAN the Portname and the driver used for that portname are not directly correlated.  You could call the port SPX and still use the TCP driver - but for clarity, ease of configuration, and logic, no administrator does this.

Once these two steps are complete, you will need to recycle the Notes Server for the changes to take effect.  To test that you are using a different port, try to replicate a database via the Notes Server console replicate command.  Replicate to a target server that you were previously able to replicate to (before you alter the target server's configuration). You should not be able to replicate.

Supporting Information:

See the Lotus Domino System Administrators Help Guide:
            
*About Notes and TCP/IP

*Setting up Notes and multiple TCP/IP ports

 

by: philsmicronetPosted on 2000-03-01 at 18:07:33ID: 2574999

I tested the Pass through and this works fine. I'm sorry, but my other comment was not directed to you, I actually attempted to award you the points with the passthrough comment but something went wrong

Thanks

 

by: rfharrisPosted on 2000-03-01 at 18:22:39ID: 2575025

Glad to hear you have the passthrough working.  It is a terrific feature -- but very underused.  

You may want to keep an eye on the "server in the middle" for resource allocation and performance.  The hit from passthrough isn't bad (from my experience) but it gets some sys admin types nervous.  I have found that planning each passthrough connection as if it were two simultaneous connections is "close enough" for my server loadbalancing guestimates.

Cheers!

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...