Mitel Forums - The Unofficial Source
Mitel Forums => Mitel Software Applications => Topic started by: johnp on December 23, 2013, 06:31:59 PM
-
I have a customer who may have an issue with getting split dns working external. With that said, has anyone got UCA working externally via ip address? I would figure that the web proxy would need to be bypassed and an external address would need to point to the uca/mas directly.
I do have a few scripts that will let me add the external address as a subject alternate for the cert.
I also know that such a setup likely wouldn't be officially supported. ;-)
Thanks for any insight
-
are you sure it's a good idea to expose your customer to the security risks associated with what you are attempting? The design Mitel has is for a reason, it isn't just cobbled together.
-
If they can't get split DNS working, then they're likely more trouble than they're worth. Hard coding iPs in 2013 is simply no way forward.
-
While I think UCA in server mode is supported, with the correct firewall settings I don't see security being unacceptible.
I suppose another alternative would be to run multiple domains on the servers involved. one that resolves internally and another external. The only downside would be the mobile users would need to always use the external.
Just looking for additional thoughts and ideas.
-
While I think UCA in server mode is supported, with the correct firewall settings I don't see security being unacceptible.
I suppose another alternative would be to run multiple domains on the servers involved. one that resolves internally and another external. The only downside would be the mobile users would need to always use the external.
Just looking for additional thoughts and ideas.
The problem with differing internal and external domains is that the links in the web UIs tend to break due to bad assumptions in design, and absolute URLs.