Help

JDS in DMZ?

franton
Valued Contributor III

Posted on ‎09-06-2013 03:49 AM

We currently have an Apache server sitting in our DMZ acting as a distribution point. It's pretty locked down, but not as much as it could be. JAMF's JDS allows (and insists on) certificate based communications. Sounds ideal!

Is anyone running a JDS as an externally available distribution point?

0 Kudos
Reply
4 REPLIES 4

stevehahn
Contributor

Posted on ‎10-01-2013 02:02 PM

I'd like to know more about this too. I doubt the network guys will let me put a JDS in our DMZ, so I'm trying to figure out which ports I'd need to open on the firewall in order to have a JDS be externally available.

0 Kudos
Reply

ImAMacGuy
Valued Contributor II

Posted on ‎11-19-2013 06:56 AM

+1

0 Kudos
Reply

denmoff
Contributor III

Posted on ‎11-19-2013 07:13 AM

@stevehahn][/url I think you just need 443 open for webdav connections. Also, I think the JDS still needs to be pingable for casper admin to mount it.

0 Kudos
Reply

bvrooman
Valued Contributor

Posted on ‎02-11-2015 07:09 AM

So if I'm understanding this correctly (and my read-through of the relevant portions of the admin guide), I should only need to open port 443 to put a non-root JDS in the DMZ? Will ping need to be open from internal subnets to the DMZ instance?

0 Kudos
Reply