Академический Документы
Профессиональный Документы
Культура Документы
Deployment
Date: 27 Aug 2015
Open Mic Team
Sandip Singh - IBM ICS Support engineer
Presenter
Keep the IBM Traveler server's directory separate from Mail server to prevent design
changes.
Minimize the amount of data from the mail servers that is accessible from the Notes
Traveler server.
Name look-up can still be done from Traveler server using the below notes.ini along
with DA.
NTS_TRAVELER_AS_LOOKUP_SERVER=true.
Note: With this deployment if you want to move to HA then all Traveler server in HA pool
should be from same DOMAIN. 6 | 2015 IBM Corporation
Choosing the deployment (continued..)
Network consideration
Mail server, IBM Traveler server and Enterprise database server should be located
in the same LAN.
Ping response not more than 50 m/s from Traveler server to mail servers.
Use HTTP or HTTPS to communicate with the Traveler server from the device.
Use basic Round Robin without session affinity for load balancers in HA setup.
Network equipment must not block or alter traffic between mobile device and server.
Disk Considerations
The disk I/O requirements for the enterprise database server are higher in order to
support multiple IBM Notes Traveler servers in HA.
Capacity Guidelines:
Note: While you are in HA maximum devices per server scale up to 2500.
Reference:
http://www-10.lotus.com/ldd/dominowiki.nsf/xpDocViewer.xsp?
lookupName=Administering+Lotus+Notes+Traveler+8.5.3#action=openDocument&res_ti
tle=Capacity_planning_guidelines_for_Lotus_Notes_Traveler_LNT853&content=pdconte
nt
Copy the contents of the Domino data directory from Traveler old to Traveler new.
Change the hostname and IP address of the Traveler new server to match the
hostname and IP address of the Traveler old server.
data/traveler/ntsdb
data/LotusTraveler.nsf
data/ntsclcache.nsf
Change the hostname and IP address of the Traveler new server to match the hostname and IP address
of the Traveler old server.
Take TRAVELER and HTTP out of the ServerTasks list in the notes.ini file and then start the Domino
server.
Add TRAVELER and HTTP back to the ServerTasks list of notes.ini file.
References:
http://www-10.lotus.com/ldd/dominowiki.nsf/xpDocViewer.xsp?
lookupName=Administering+Lotus+Notes+Traveler+8.5.2#action=openDocument&res_title=
Moving_Lotus_Notes_Traveler_to_a_new_server_LNT8521&content=pdcontent
Backing up files.
All devices, except the iOS devices are required to upgrade the IBM Notes Traveler
application after the server is updated, to have the new features.
After upgrading the server, you can use IBM Notes Traveler immediately.
Resynchronization between the server and devices does not occur.
By default, the value of the maximum memory size is 1024 MB for 64-bit. Evaluate the
system load and adjust the memory size as necessary.
Use the tell traveler mem or tell traveler status command to determine if Java heap is
sufficient on your system.
Ensure that number of devices that are accessing the traveler should have the proper number
of HTTP threads are allocated to the server.
Number of threads that are needed is 1.2 times of the number of devices.
Remove traveler task from traveler server notes.ini, while domino server
upgrade.
Moving stand alone IBM Notes Traveler servers into a high availability pool.
IBM Notes Traveler High Availability configuration provides for improved fault tolerance.
Maximum Devices per Server Minimum Operating System Minimum Physical Memory Minimum CPU Cores
The pool of IBM Notes Traveler servers is accessed through a single URL.
The internal database on each individual IBM Notes Traveler server is no longer used.
This enables any server in the HA pool to service requests from any user/device.
- Only add one server to the pool at a time. First server creates the service pool.
Change the External Server URL of Traveler on the Server Document from
http://<servername>/traveler To https://<servername>/traveler
After updating the External Server URL from http to https, all users must reconfigure
their devices to the new server URL which is using https.
If can't reconfigure all devices at that time then you should keep TCP/IP port status to "Enabled"
under TCP section in server document.
What is Poodle?
It does not affect the newer encryption mechanism known as Transport Layer
Security (TLS).
A Notes Traveler solution may or may not be impacted by the POODLE attack depending upon the
deployment configuration together with the technical responses or updates offered by the various platform
vendors.
1. Consult the mobile device vendors for details on their product responses to this attack.
2. Mobile devices connecting via SSLv3 directly to a Notes Traveler (Domino) server.
The Notes Traveler server has been updated to use TLS as default encryption protocol for
server to server communication.
IBM has released APAR patch LO82423 to prevent the use of SSLv3 in Notes Traveler secure server-to-
server communication. This patch has been included in Interim Fix updates for the following Notes Traveler
server releases and in all future releases:
9.0.1 IF7
9.0.0.1 IF8
8.5.3 Upgrade Pack 2 IF8
References:
https://www-304.ibm.com/support/docview.wss?uid=swg1LO82423
http://www.ibm.com/support/docview.wss?uid=swg21688179
IBM has released Domino server Interim Fixes that implement TLS 1.0 to protect against the POODLE
attack.
References:
http://www.ibm.com/support/docview.wss?uid=swg21687167
IBM Traveler 9.0.1.3 requires Domino 8.5.3.x, 9.0.0.x, or 9.0.1.0.x (or later).
We recommend running Domino 9.0.1 to take advantage of all latest fixes and features.
If installing on a Domino 8.5.3 server it is required to also install Domino 8.5.3 Upgrade Pack 1 if
not already installed.
Can be installed on any previous release of Traveler, stand alone or HA.
Same Enterprise DB support as 8.5.3 UP2.
BlackBerry devices latest firmware 10.3.1 support syncing the Trash Folder.
IBM Verse for iOS devices is supported but it is not supported if running on a Domino 8.5.3 server.
Upgrade Domino to a 9.0.x or later version for support.
It is a powerful email hosting solution that enables users to access their business communications
from a laptop or desktop browser or from a mobile device.
This email and business messaging experience is based on an innovative user-centric design,
including social analytics and advanced search capabilities.
IBM Verse helps users quickly find and focus on what content is most important, empowering them to
build stronger working relationships while optimizing business results.
IBM Verse can be installed from the Apple iOS App Store.
To configure IBM Verse for the first time, you'll need to know the address of your IBM Traveler server.
You may be required to set an application passcode for whenever you use IBM Verse.
If the configuration is successful and pascode setting is done then IBM Verse will open the mail Inbox
and start syncing with the server.
From the Settings page, you can also choose whether to sync new data to your device automatically
(if your server supports it) or manually.
Mail Actions:
Trash, Move to Folder, Reply, Reply All, Forward and Quick Reply.
Mail Settings:
http://www.ibm.com/support/docview.wss?uid=swg24019529
Notes Traveler APAR Listing by release:
http://www.lotus.com/ldd/dominowiki.nsf/dx/Lotus_Notes_Traveler_APAR_listing
Registering for Notes Traveler notifications:
http://www.lotus.com/ldd/dominowiki.nsf/dx/How_to_subscribe_to_Notes_Traveler
_product_notifications
Notes Traveler Part Number Index:
http://www.lotus.com/ldd/dominowiki.nsf/dx/Notes_Traveler_Part_Number_List_for_Fast_Search_o
n_Passport_Advantage
Q&A