on 05-26-2011 3:57 PM
Dear all,
We want to implement a portal where external customers will login to this portal and so do the employees as ESS is deployed on this one. The portal needs to be external facing portal. We have installed the portal and available on network but need to part of the internet too. What are my options for this? How do configure?
1. Should I use reverse proxy in DMZ?
2. Should I use SAP web dispatcher?
Or 3. Any other option (other then FP)
What is the best practice for this kind of installation?
Your early responce is appreciated.
Hi Kedar,
I think you should use a reverse proxy instead of Web Dispatcher. I prefer to use Apache for reverse proxy. It is stable, secure and flexiable. You can view my blog about this:
http://netweaverturk.com/2010/08/12/exposing-portal-and-bsp-to-internet-using-web-dispatcher/
http://netweaverturk.com/2010/09/04/exposing-portal-bsp-to-internet-apache-way/
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I agree with Erhan that Apache Rev Proxy is also a good alternative...
Please be aware that the SAP Webdispatcher is "SAP Cluster Aware" without any extra effort it can load balance over a J2EE and ABAP Cluster (CI + one or more DI's)... What I also have seen at some bigger landscapes is:
Layer 1. Apache Rev Proxy (in DMZ)
Layer 2. SAP Webdispatcher (one per SID, for SAP j2ee/abap Cluster load balancing as mentioned)
Layer 3. SAP Systems Portal(s), ECC, BI, CRM etc etc
Cheers,
B
SAP suggests to use Web Dispatcher and it is pretty straight forward to implement it. However, based on your landscape you can choose from a variety of options like using a Reverse Proxy, external load balancers and software, Web Dispatcher, etc..
The placement of a reverse proxy in the DMZ or Web Dispatcher should be enough and you won't need to place the portal server itself in the DMZ.
There are some good weblogs on SDN on the topic of External Facing portal.
Implementing an External Facing Portal:
http://help.sap.com/saphelp_nw04s/helpdata/en/04/e5b7c3de384515afeafa0dab8e44e0/frameset.htm
Options and strategies to secure an Internet Facing Portal:
http://wiki.sdn.sap.com/wiki/display/EP/ExternalFacingPortal
http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/44a122f3-0901-0010-b09e-ed4a21441319
http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/30eb732a-2448-2a10-7aa6-8fd0849b6f20
Hope that helps !!
Thanks,
Shanti
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I fully agree with Shanti...
One additional note:
If your content in the Portal is rendered on the backend (examples are WD ABAP, BSP, IAC, ITS)... then you should be aware that these backend systems should also be made accessible to the internet.
In the past you should have configured multiple webdispatcher (one for very SID) but now recently this is enhanced by SAP so you can manage this with 1 WebDisp. See the folowing link for more details: http://help.sap.com/saphelp_nw70ehp2/helpdata/en/03/afe24bfeb7419b9172ffb6e7636926/frameset.htm
Cheers,
Benjamin
User | Count |
---|---|
89 | |
10 | |
9 | |
9 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.