There's no way to load balance both AMF (sticky HTTPS with cookies) and direct RTMPS socket connections from a swf to the same backing application server.
I'd recommend sticking to all HTTPS communication between the client and server or all RTMPS. There's nothing preventing the client from making its remoting calls over the same RTMPS channel it's using for messaging or data management. We don't currently provide a solution for handling RTMP connection authentication in the DMZ and then proxying back to the app server tier. Existing customers use hardware load balancers (optionally including SSL acceleration) configured to do straight TCP pass-through, in order to round-robin RTMP/S connections back to their application server tier with authentication happening there. If that's not an option (RTMPS with TCP pass-through), you'll need to go with HTTPS long-polling (with a recommended server wait of 1 minute) through your redirector. If the redirector does like lots of 'longer-lived' HTTP connections, then you might be best off with simple polling over HTTPS. Best, Seth ________________________________ From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Josh VanderBerg Sent: Saturday, January 26, 2008 4:58 AM To: flexcoders@yahoogroups.com Subject: [flexcoders] Proxying RMPTS in a DMZ I have a situation where I need to make a tomcat web server running LCDS accessible on the internet. Our flex application talks to the web server over https for Remote Object AMF requests, and over RMTPS using the messaging protocol for push. I don't want to put the web server in the DMZ, for security reasons, so the most obvious solution is a reverse proxy in the DMZ. With a previous flex app we've used the tomcat redirector, which works fine for http based AMF requests, but it won't work for RMTPS, as this is a persistent socket connection, with its own protocol that the tomcat redirector doesn't understand. I haven't been able to find much in the way of documentation on this topic on the Adobe website. I did find mention of deploying another Adobe enterprise app that uses RMTP using SSL accelerators in the DMZ, but I am not sure this will work with flex. I was wondering if anybody out there has successfully configured such a solution to proxy AMF and RMTP request from a DMZ.
