Hello,

I wouldnt be able to comment on Godaddy's support for their hosted exchange and BES environment.  If you are simply looking at testing your application connecting to an application server behind the corporate firewall via the MDS transport and do not require the Exchange server then your best approach would be to simply set up a BES server for applications.

http://docs.blackberry.com/en/admin/subcategories/?userType=2&category=BlackBerry+Enterprise+Server+...

The below kb article speaks to the different connections you can make from your BlackBerry application.

http://supportforums.blackberry.com/t5/Java-Development/Different-ways-to-make-an-HTTP-or-socket-con...

Cheers,

Gurtej

Hi Gurtej,

Thanks for your tip, didn't know about BES server for applications.,it's an interesting solution as we are not very excited about the requirement of the Exchange server.

Finally I think that I mixed a bit the apples and the berries :-) 

In fact the "application server" where we want to connect is  outside the BES and the firewall.  It's on its own public IP,  but we apparently found:

- It looks that for some corporate users (so with BES Enabled in their device) we cannot use direct TCP to reach that Public IP (I mean that appending ;deviceside=true to the socket connections doesn't work) .  On the device they''ve the APN properly configured for reaching that IP, wifi disabled etc.. On this scenario when we use the MDS (so append ;deviceside=false ) it can connect to the application server.

- It  looks for other corporate users (also with BES Enabled on their device) we can use direct TCP (so append ;deviceside=true) to reach that Public IP without problems

Does this make sense?  Could the problem appear due to  some setting of the defined BlackBerry Policy Service at their BES? ( http://docs.blackberry.com/en/admin/deliverables/12873/Architecture_BES_224446_11.jsp)

BR,

Albert

If you do not have full control of BlackBerry policies then that may be one of the issues. I highly recommend CloudWire when it comes to Hosted BlackBerry Enterprise Server.

So I understand that if users download the application OTA (for eg. opening the JAD from the browser)

·BES administrator will need to allow the installation of that application adding it to the permitted Unlisted applications

·BES administrator will need to allow external connections in order to use direct tcp for that app

But my doubts now are:

A- If the application needs to do TCP connections to whatever-domain.com on the ports [5000:5050] BES administrator will need also to  allow unlisted application to connect to that domain and to that range of ports? (So I understand IPs and outgoing TCP ports used by the application are needed by the BES admin, right?)

B-Could the BES firewall rules be disabled/changed only for one permitted unlisted application?

In case that is possible which information needs BES administrator to change rules just for one unlisted application? The module name?

Br

up!

All applications are allowed to be installed to BES-activated devices by default. There is no Software Configuration automatically applied to users so there is no restrictions on what can be installed.

If you did apply a Software Configuration then you could enforce things such as Application white and black listing, restricting application functionality etc.

Note that Direct TCP connections do not go through the BES MDS, they are routed directly through the carrier gateway, so you would not need to open any ports on the BES. If the application connects through BES MDS and requires a specific port to connect to a server external to the BES Intranet, then you would need to open that port for the BES, this would be opened for all applications.

Very interesting. I was thinking default BES policy was forcing to use the BES/MDS connection and that BES admin needed to add a policy for allowing Direct TCP for unlisted apps but from your comment I see not.  It is only needed if admin initially added special policies on the BES.

Just another topic I'm not sure yet:

For any app using UDP connections I think it is mandatory  to have Direct TCP/Wifi enabled  because as far as I know it is not possible to stablish UDP connections throgh the BES/MDS connection. as ConnectionFactory java doc states [1] . Is that correct?

[1] Note: WAP 1.x, WAP2, MDS and BIS_B do not support udp:// or datagram:// connections. If any such combination is specified, null will be returned and if a ConnectionAttemptListener is defined for the factory, it will be notified with a NoAvailableTransportException.