We need to run a
EJB over an internal firewall. We do NOT have a need to run across the EJB over the public internet. We understand that there are problems with IIOP (and RMI?) over the public internet, we believe that this is a different issue.
We will have two Application servers on either side of a firewall. One will be on a DMZ, the other on an internal network. The one on the Internal Network will run the EJB container. The server on the DMZ act as the client and make use of the EJBs on the container.
We have control over the firewalls, and will be able to open up ports that would not be possible over the public internet. We are hopeful that it is only a matter of specific ports. IIOP uses 535. Do we only need to open this up? The
Firewalls will be using Network Address Translation (NAT). We assume that this
will not be the problem it is for Microsoft's DCOM.
Thanks for any help!