Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Relocation of alf_data

javadeep
Champ in-the-making
Champ in-the-making

‎10-15-2009 04:38 AM

I am using Alfresco 3 Stable labs version .

Can I have alf_data in a different server than the one in which Alfresco is running .
Say I have installed Alfresco in Server A . I want alf_data to be created in Server B .
How can I do that ?
Labels:
0 Kudos
5 REPLIES 5

mrogers
Star Contributor
Star Contributor

‎10-15-2009 05:00 AM

You would use your O.S. to mount the remote filesystem of Server B.    The actual commands to use depends on your O.S.
0 Kudos

javadeep
Champ in-the-making
Champ in-the-making

‎10-15-2009 06:54 AM

Thanks mrogers for the input.

I have done the same with mounting the remote NFS share (RHEL 5.2) under alf_data. But by doing this I am exposing the store to the DMZ, as my Alfresco server is at the DMZ. But is there a possibility that we can specify the 'dir.root' parameter in custom-repository.properties pointing to the remote sever directory ?

Thanks for the help.
0 Kudos

gronfelt
Champ in-the-making
Champ in-the-making

‎10-15-2009 08:31 AM

I doubt what you wan't to do is possible, at least without some major rewriting of Alfresco, because you would have to utilize some sort of remote access protocol, instead of just accessing a local filesystem.

But do you have to place your Alfresco server in the DMZ? If you put an Apache proxy in front of Alfresco you could put that in the DMZ and place the Alfresco machine in the trusted zone and then you would only have to open up for the AJP service.
0 Kudos

javadeep
Champ in-the-making
Champ in-the-making

‎10-20-2009 02:44 AM

Thanks gronfelt .

Actually I have one central office where the Alfresco servers reside . I want the zonal offices to accesss the repository through internet .
My architecture is somewhat like this .


                                                                           Request from Internet
                                                                                    |
                                                                                    |
                                                                                    |
                                                                                   \/                                                     
                                                         =======================================
                                                        |   Web Server Where Alfresco will be installed |      (  DMZ )
                                                         ========================================
                                                                                  |
                                                                                  |
                                        =====================Firewall ===============================

                                               R        = ===================================
                                               E        |                        Server A                        |              (  MZ)    
                                               P        |                                                             |
                                               O       |     (where alf_data must be created )      |
                                               S         ====================================
                                               I 
                                               T          =======================
                                               O        |  Database     Server         |
                                               R        ========================
                                               Y

  My aim is to keep the repository inside the MZ and the services in the DMZ so that the client can be accessed directly from the zonal offices .
  The repository should reside inside the DMZ for security reasons . I do not want to expose my repository .

   Please advise as to how to achieve this .
0 Kudos

norgan
Champ in-the-making
Champ in-the-making

‎10-20-2009 03:45 AM

Hi, 
what is the use of positioning the servers outside the DMZ. If your firewall blocks everything but the alfresco address, a direct attack is only possible on alfresco server. To attack the filesystem or the database, you have to
a) hack your firewall - game over
b) or hack the alfresco server.

In either case, once the bad guys are on the alfresco server, they have access to the database and filesystem anyway, even using "alfresco system rights", which would theoratically allow to hack the alfresco server and use the information stored in the DB like audit traces, version control, userrights settings …

The only reason would be that inside applications are using the fileserver & DBMS server as well and you do  not want to expose other data. If you have a HUGE DBMS server, thats fine, but Alfresco can deal with that. But regarding a file server, I would think about splitting them up anyways for both operational security and maintenance issues.

Norgan
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC