From: "GKern"
Our i isn't exposed to the internet and the web application will be
in the DMZ.
It's just too ironic that folks would consider front-ending an IBM i server with an IIS server to be "more safe". That's like saying you're willing to expose your most vulnerable resource to intruders, and providing an open tunnel from there to your strongest resource.
To be completely frank, I'm not aware of anyone who exposes any HTTP server to the internet. The communication always seems to go through routers & firewalls.
So if you wanted to create a DMZ for your IBM i HTTP server, you could do it with a pair of routers, and leave IIS completely out of the mix. That would also remove a probable bottleneck.
That's not to say that some folks might have other reasons for using IIS. It's just that I find the security argument to be ironic.
Nathan.
This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
