The diagram in this topic shows a network topology that uses a Virtual Private Network (VPN) server as the secure access point to the company intranet from mobile devices.
This solution allows for the most flexibility in terms of what applications can be connected by mobile devices and what protocols they are allowed to use. When you use a secure VPN tunnel between the mobile device and the company intranet, any applications that are running on the device can connect to any company server just as if it were running inside the company network. For example, you can use the device browser to open pages on an internal website or use instant messaging on the device that connects to internal messaging servers.
You might want to consider running the mobile device client connection with the HTTP protocol rather than the HTTPS protocol when you are using a VPN. The VPN typically provides a secure data channel. There is some performance gain using HTTP rather than SSL, because the mobile device and the IBM® Lotus Notes® Traveler server do not need to encrypt all data. However, this leaves the connection unencrypted between the VPN connection point and the Lotus Notes Traveler server.
The type of VPN server that must be installed depends on the mobile device. Most of the mobile devices support some form of IPSec or PPTP protocol, so network VPN appliances can be used by the mobile devices. IBM Lotus® Mobile Connect provides mobile clients that support Windows® Mobile and Nokia devices. It also offers a secure HTTP access solution for devices such as the Apple iPhone. For more information about the capabilities of Lotus Mobile Connect, see the IBM Lotus Mobile Connect page
, which includes a link to Lotus Mobile Connect documentation.
Parent topic: Planning your network topology