Where to place your IBM
® Lotus Notes
® Traveler server in your network depends on the types of devices used and sync types. This section includes a list of possible scenarios and why one might be selected over another.
Windows Mobile, Nokia, and Android devices
The Lotus Notes
Traveler client running on Microsoft
™ Mobile, Nokia, and Android devices uses a single communication channel for data syncing and push messages along with an optional SMS channel. The data sync channel uses HTTP or HTTPS to communicate with the server. This channel is always initiated from the mobile device. The channel should be secured either through a Virtual Private Network (VPN) or by using HTTPS so that all data sent is encrypted. The optional SMS channel is used to notify the mobile device of pending server changes. This short message is delivered to the device SMS mailbox and read by the Lotus Notes
Traveler client. The Lotus
® Traveler client then carries out the command or begins a data sync.
Apple devices use either HTTP or HTTPS communication channels to sync with the Lotus Notes
Traveler server. These devices do not support the SMS push channel.
Connection types and ports
The following table provides a summary of the connection types used by the mobile devices and the ports they use by default. Only one data sync channel is used but the mobile devices can support either HTTP or HTTPS.
Table 1. Connection types and default port numbers
|Used for||Connection type||Default port||Notes|
|Data syncing||HTTPS||443||This connection type is best for data syncing. The port uses a secure channel for data transfer between the device and the server. |
|Data syncing||HTTP||80||The port uses an unsecured channel for data transfer between the device and the server.|
TCP Port 8642 was previously used by Windows
Mobile or Nokia Lotus Notes
Traveler clients, version 8.5.1 or earlier. This port is not supported for Lotus Notes
Traveler High Availability. Upgrade the Lotus Notes
Traveler client code to the latest version to use it with the Lotus Notes
These topics describe different network topologies and give more specific information about why each might be used:
Server types and ports
The following table provides a summary of the connection types used by the Lotus
NotesTraveler Server and the ports used by default.
Table 2. Server ports
|Used for||Connection type||Default port||Notes®|
|Inter-process communication ||TCP||50125 ||Port used for servlet to server task communication as well as server task to server task communication (HA pool). Secure socket (SSL) is used if configured. |
|Inter-process communication ||TCP||50126 ||Port used for server task to servlet communication. Secure socket (SSL) is used if configured. |
|Database communication||TCP||50000 (DB2®) 1433 (MS SQL)||Database server port used for server task to database server jdbc communication. The port for the DB2 Database instance can vary based on the number of instances on the database server. Port 1433 for the SQL Server communication is standard. |
|Mail server communication||RPC/TCP||1352||Port used by the Lotus Notes Traveler server to communicate with each mail server.|
During initialization, the Lotus Notes
Traveler server automatically scans the available network interfaces and uses the first active, non-loopback option. In most cases, this automatic selection will be adequate. If the server has multiple network interfaces, however, the wrong interface may be selected during initialization. If this happens, the notes.ini
setting named NTS_HOST_IP_ADDR
can be used to manually select the correct interface. See Notes.ini settings
for more details about configuring the interface and port settings.
Using a reverse proxyParent topic: Choosing a deployment configuration
The diagrams in this topic shows a network topology where a reverse proxy resides in your DMZ and provides authentication services for the mobile device clients.
Using a virtual private network
The diagram in this topic shows a network topology that uses a Virtual Private Network (VPN) server as the secure access point to the company intranet from mobile devices.
Use either the virtual private network or the reverse proxy solution to ensure the best overall security. However, it is also possible to use SSL from the mobile device to connect directly to the IBM Lotus Notes
Traveler server or HA pool of servers inside the DMZ.