Benefits of Sun's iPlanet Portal Server Software

Organizations everywhere recognize the importance of providing secure, remote access to internal systems to employees, consultants, partners, and suppliers -- but the costs of deploying modem pools, paying for long-distance charges, and supporting, maintaining, and upgrading software on employees' laptops and home computers can be overwhelming. Although the use of Virtual Private Networks (VPNs) can provide secure access to internal systems, they require installation and maintenance of software on remote systems, spreading limited system administration resources even thinner.

Sun's iPlanet^TM Portal Server software changes the fundamental parameters by which organizations can provide access to their internal systems. With no software installed on remote systems -- except for a Java^TM technology-enabled Web browser -- the iPlanet Portal Server desktop enables remote users to securely access company resources from anywhere on the Internet, leveraging high-speed connections including T1 and Frame Relay lines typically used to connect remote and customer offices; and DSL, ISDN, and high-speed modem access often used by small businesses and by employees at home and on the road (See Figure 1). Using Secure Socket Layer (SSL) connections, users can access e-mail, calendaring systems, file servers, legacy systems, and even run applications using the X Window System, and Microsoft^TM Windows^TM 95, 98, and NT environments.

Figure 1 Sun's iPlanet Portal Server software uses a server-based approach to provide secure, remote access to authorized users from anywhere on the Internet.

Options for Small- and Medium-sized Businesses

While larger companies have the financial resources and staff to install and maintain a server-based remote access solution, it is sometimes beyond the means of small- and medium-sized companies. In today's increasingly-competitive, global marketplace, these companies are focusing on their core business and outsourcing some of their IT functions, leaving the cost of capital equipment acquisition, maintenance, upgrades, and staff to service providers. Indeed, many small businesses with an IT infrastructure based on Microsoft Windows NT servers would prefer to outsource their needs for UNIX ^® server-based systems

The outsourcing model makes sense for iPlanet Portal Server software because it is a specialized function for which service providers can realize economies of scale. Outsourcing eliminates the need for small- and medium-sized companies to develop expertise in areas aren't necessarily aligned with their core business -- yet enables them to leverage the benefits of better communication with their customers, partners, suppliers, employees, and consultants.

Developing and Refining the Outsourcing Model

The issue with outsourcing iPlanet Portal Server-based remote access services is how to deploy the required gateway and platform systems so that service providers can best deliver economies of scale to their customers. Lone Eagle^TM Systems Inc. is currently working with Sun Microsystems to develop and refine network architectures that enable iPlanet Portal Server systems to be located in lights-out, co-location facilities.

Lone Eagle Systems is designing architectures and management facilities for service provider-based deployment and control of iPlanet Portal Server hosts so that they can provide remote access facilities for multiple customers. Given the need to minimize cost of ownership, Lone Eagle Systems is evaluating techniques that provide secure access to company intranets with a minimum of low-maintenance equipment installed at the customer site.

Pilot Deployment

Through a pilot project deployment in Boulder Colorado, Lone Eagle Systems is gathering performance data and real-world experience that will enable more accurate sizing for future customers. The Root Group in Boulder is participating as a trial customer. Servers are have been installed in NeTrack's co-location facility , and VPN routers from Compatible Systems are used for connectivty to the customer site (See Figure 2)

 

Figure 2 Compact installation of Sun Netra t1 servers in Netrack's co-location facility.

Lone Eagle Systems has deployed iPlanet Portal Server gateway and platform systems in the co-location facility using Sun's new single rack-unit high Netra^TM t1 Model 120 servers. A simplified network architecture diagram illustrates a sample customer site, co-location facility, and remote management network (See Figure 3). Connectivity between the separate sites is provided using 256-512 Kbps Digital Subscriber Lines (DSL).

Remote users access the iPlanet Portal Server gateway, which enables access to a secure Web site hosted by the platform server (shown in blue). Once authenticated, users have access to the front page, where they can click on links that take them directly to their company's internal resources, including network file browsing, HTML and Java applet-based access to e-mail, internal Web sites, and internal applications hosted on servers running both the Solaris^TM operating environment and Microsoft Windows NT software. The example internal network illustrates a combination of workstations and servers on a protected network (heavy red line).

 

Figure 3 Example architecture of the outsourced hosting model deploying an iPlanet Portal Server gateway and platform on a private network at a co-location facility, with management performed at a remote site.

The iPlanet Webtop gateway and platform servers communicate via a secure, private network that acts as an extension of the customer site. As internal resources are required, both the gateway and platform systems access them through a VPN tunnel between the co-location facility and the customer's internal network (dotted magenta line). For system monitoring and maintenance, a second VPN enables secure access to the internal network and system consoles from a remote management location. All routing and VPN functions are supported by Compatible Systems routers.