Accessing web service and rmi from internal network of dmz

Hi everyone,

sorry for my ignorance.

I am accessing web service and rmi (across internet) by my EJB (from internal network), it is behind 2 firewalls.
internal network > firewall > dmz > firewall > internet

I just know a web proxy will help for internal user to access the internet, how about rmi, will it still work with the proxy?

another question about deployment diagram. should we include external server like (credit card authorization server) in the deployment diagram and showing the communication protocol with it ?

please help. much appreciated

-katty

Hi,

Firewalls are always opened for HTTP port(80), RMI will be on a different port and cannot be accessed from inside a firewall. Sys admins will never open port other than 80. Web services on SOAP over HTTP is the solution. In web service, Java behind the screen uses RPC.

Cheers,
Kuppusamy.V.,

Is your RMI server on the open Internet? It would normally be behind another firewall, which you would have to traverse, this time from the outside in.

RMI supports tunneling over HTTP out of the box, but not without significant performance penalty. Take a look at this http://java.sun.com/developer/onlineTraining/rmi/RMI.html (scroll down to "Firewall Issues")
This begs the question, if you are going to tunnel RMI over HTTP or HTTPS, why not just use a web service? The only reason would be if you have to talk to an existing service you do not have control over (like a different company).

External server and protocol should be depicted on deployment diagram.

Hope this makes sense.

Drago

thanks Kuppusamy.V. and Drago for the replies. they are useful. much appreciated