Trying to replace all the forwarders with new ones but I can't seem to the pattern matching to work. I can't see the mistake for the life of me:
sudo sed -i .bak "s/forwarders {[^]]*}/forwarders { 127.0.0.1 }/g" /etc/named/named.conf
Getting this in the logs:
Apr 14 16:29:48 imap-login: Info: Aborted login (user disabled): user=, method=DIGEST-MD5, rip=10.0.10.14, lip=10.0.1.9, TLS: Disconnected
Any ideas?
I have an OS X Server I've been using for the last two years or so.
During this time it has been upgraded and fixed so many times it developed some certificate problems now turning into a gangrene.
I would like to transfer the network users in the OD, via Workgroup Manager or something, maybe even keeping their passwords if possible. I can't archive the OD and restore it since I also changed the hostname and ip of the server.
Is there an easy way to do this?
Mavericks OS X Server - Profile Manager - Do Profile Manager ports have to be mapped on the Router for full functionality?
I noticed that Server asks if I want Profile Manager ports to be available. I checked the settings it adds to the Router and it maps tcp ports 80, 443, and 1640 for the Server.
Port 80 is just the apache web server, so it adds that so you can access web interface. Port 443 is again the ssl apache web server for the same reason as above.
What about port 1640?
The truth is I don't want profile manager to be accessible from the outside (via the web interface), but I do want it to function normally. Should I leave this tcp 1620 in there or can I safely remove all of them and Profile Manager will keep on working?
PS. Also found this document on Apple's support site http://support.apple.com/kb/HT5302 It seems to add more ports to the mix, ports that don't seem to appear anywhere in the automatic configuration.
2195, 2196 Used by Profile Manager to send push notifications
5223 Used to maintain a persistent connection to APNs and receive push notifications
80/443 Provides access to the web interface for Profile Manager admin
1640 Enrollment access to the Certificate Authority
OS X Server Profile Manager 3.1 (Mavericks) - Enrolling fails at "Installing certificate"
Fresh install, I use my personal server.example.com for my server in my local network dns. I don't have reverse setup yet but my DNS is configured so anyone on my local network looking at the address resolves to the correct address.
Installed the Trust Profile first, all is ok.
Then tried to Enroll my iPad and it say "Verified" on the first profile install screen, I click install, Generating Key, Certificate and the the third step at Installing Profile it fails.
The log on device management is this
1::Mar 24 08:06:08.654 [1162] <10.0.1.74> {LogElapsedTime (common.php:74)} Time since script start: 8605us [https://server.mydomain.com/devicemanagement/mdm/mdm_enroll]
1::Mar 24 08:06:08.659 [1162] <10.0.1.74> {require_once (mdm_enroll.php:11)} vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv - POST mdm_enroll
1::Mar 24 08:06:08.825 [1162] <10.0.1.74> {GetMDMACLFromUserAgentHeader (mdm_enroll.php:71)} iOS version 7.1
1::Mar 24 08:06:09.575 [1162] <10.0.1.74> {SendFinalOutput (mdm_enroll.php:85)} Sent Final Output (10460 bytes)
1::Mar 24 08:06:09.575 [1162] <10.0.1.74> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - /devicemanagement/mdm/mdm_enroll
0::Mar 24 08:06:09.576 [1162] <10.0.1.74> {SendFinalOutput (mdm_enroll.php:85)} Completed in 933ms | 200 OK [https://server.mydomain.com/devicemanagement/mdm/mdm_enroll]
I've found this wonderful explanation of SPF on http://www.openspf.org/SPF_Record_Syntax and i had it working on my older setup.
Setup has changed and i find myself in the ropes again.
I have an external DNS service. A router on a dynamic IP connection. A server with a 10.0.1.3 internal ip. DNS records on this server, stating that server.example.com points to 10.0.1.3. I use the server dns to resolve its own and local network queries. I also have an app installed to send my external DNS service updates if the router ip changes.
What i've figured out so far is that in this particular case i might be able to successfully use an TXT record along the lines of
"v=spf1 a:server.example.com -all"
Would this work? Assuming the ip doesn't change exactly when the email is sent... What would be the best way to go about setting this up?
Thank you!
PS. I my understanding i might be able to use "v=spf1 mx -all" and have my server.example.com as an mx record, and in turn server.example.com dynamically updating to my ip when it changes. This way when some receiver get's an email from my ip... this checks the MX record to see if the ip is in that list, then it gets server.example.com as the response which in turn always resolves to my latest dynamic ip.
I have a OS X Server behind a router. Server's ip address is 10.0.1.3. The router has open ports on everything and an external ip.
I've setup my mail exchange. I can receive mail people send to me but the reply never gets back to them.
I don't use TXT records, could that be the problem? Could my ISP be blocking something?
I have this "new" problem, i just rebuilt the configuration of our domain+server+hosting to new office standards.
Here is the setup
We have a myexample.com domain with a well known registrar. A "web hosting" company, with it's own, that let's us configure everything (except dynamic ip updates) A "dns hosting" that supports dynamic ip updates. An office server on a dynamic ip connection. E-mail
Problem
On the .com registrar side i have the "dns hosting" name servers hooked up.
From this "dns hosting" i redirect @.myexample.com and www.myexample.com traffic to the "web hosting" server an ip like 89.46.35.224 with some CNAME and A records. Traffic to server.myexample.com goes to the dynamic address.
All is well... ping works fine... services work fine... dns propagation is all done by now.
The problem is mail. When i send a mail to my domain i get instant reply from the DNS: mx.mydynamicdnshost.com reports "mail for myexample.com loops back to myself"
In my previous configuration all i needed to do is use a TXT record like "v=spf1 ip4:89.46.34.0/21 ip4:216.239.115.0/24 a mx~all" and e-mail would just "work"
Now it doesn't... am i missing something? Did my previous dns host have some kind of standard configuration that made it work and this one doesn't? Do i need to add anything else.
I've setup the server. Opendirectory LDAP is running. Created a group called ArchitectureOffice and i've got 4 accounts as members of that group. Created a folder on the Server HD under Shared Items, called OFShared. Configured a SMB share point with both POSIX and ACLs to allow the ArchitectureOffice group access to that folder.
A few windows xp machines are able to connect successfully to the server, each using their own password and username.
BUT
When they try to write anything to the SMB it gives them a 'Disk is full... error' sometimes an 'Access denied'. I don't understand what's going on, shouldn't everything i copy to that folder be accessible to everyone in the ArchitectureOffice group?
How to i setup DNS and Web so that Mac OS X Server 10.6 displays a webpage under http://domain.net instead of http://www.domain.net
www is fast becoming deprecated with people forgetting to add it. Some browsers add it and some don't.
How do i do this?
Preface I use a top level domain provider that only allows me to add "normal" third-party name servers (a list where i can add "ns1.hostingcompany.com" type entries... nothing else) AND "child name servers" which i can later attach to my parent account ( ns1.myowndomain.com and an ip address). They do not provide other means of linking up.
I want to host my own server and dns, even with just one name server (at first).
My setup:
Airport Extreme - get's a static ip address from my ISP
Mac Mini Server - sits behind the Airport and get's a 10.0.1.2
My problem is that i can't seem to configure DNS correctly. I added a "child nameserver" with my airport's external static ip address at the top level provider, so to my understanding i should have all DNS traffic redirected to my Airport. I've opened port 53 UDP to let the traffic in.
Now, what i don't get is this. My Mini Server is sitting on a 10.0.1.2 address and i have setup dns correctly, with an A record to point and resolve my server AND a reverse lookup to that 10.0.1.2. So it's ok for "internal stuff".
Here is the clicker... How, when a request comes from the exterior for a reverse lookup, does the server "know" ... well look i have everything in 10.0.1.2 but the guy outside needs something from my real address.
I can't begin to describe the MX record bonanza...
How do i set this "right"? Do i "need" my Mini Server to sit on the external address directly (i can see how this could be the preferred solution, being close to a "real" server i have in my mind). If not... do i need a PTR record on the 10.0.1.2 server but with the external address in there?
My dream: I will extend this "setup" with multiple Mini's in different cities where i work. I want a distributed something (Xgrid comes to mind).
PS. Be gentle, i've read 2 books and the subject, and bought both the Lynda Essentials and DNS and Networking to boot, still i'm far from being on top of things.
Configuring email - when i send out email they all come from [email protected] instead of [email protected]. Is this an alias problem?
Do i need to configure my dns or mail server in a certain way?
New Mac OS X Server setup, when i send mail to gmail it goes straight to Spam. Why is that?
My setup: DNS - done (A records PTR are ok) Mail Setup - done Webmail - done
Also there seems to be a naming problem. They all come from [email protected] instead of [email protected]. I must be missing an alias somewhere.
I've read an entire book on setting this up so don't throw stones :) The GUI is masking a lot of this up for me, so explanations via GUI are appreciated.
The headers look like this:
Delivered-To: [email protected]
Received: by 10.142.252.19 with SMTP id z19cs476033wfh;
Mon, 3 Jan 2011 01:37:09 -0800 (PST)
Received: by 10.204.64.208 with SMTP id f16mr8853543bki.61.1294047428115;
Mon, 03 Jan 2011 01:37:08 -0800 (PST)
Return-Path:
Received: from server.DOMAIN.com ([94.x.x.x])
by mx.google.com with ESMTP id c20si50831332bkc.48.2011.01.03.01.37.07;
Mon, 03 Jan 2011 01:37:07 -0800 (PST)
Received-SPF: neutral (google.com: 94.x.x.x is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=94.x.x.x;
Authentication-Results: mx.google.com; spf=neutral (google.com: 94.x.x.x is neither permitted nor denied by best guess record for domain of [email protected]) [email protected]
Received: from localhost (localhost [127.0.0.1])
by server.DOMAIN.com (Postfix) with ESMTP id 0A19F60508;
Mon, 3 Jan 2011 11:37:07 +0200 (EET)
X-Virus-Scanned: amavisd-new at DOMAIN.com
Received: from server.DOMAIN.com ([127.0.0.1])
by localhost (server.DOMAIN.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id mNgNTNwNhyP1; Mon, 3 Jan 2011 11:37:06 +0200 (EET)
Received: from www.DOMAIN.com (localhost [127.0.0.1])
by server.DOMAIN.com (Postfix) with ESMTP id 57E69604F1;
Mon, 3 Jan 2011 11:37:06 +0200 (EET)
Received: from 10.0.1.3
(SquirrelMail authenticated user USER)
by www.DOMAIN.com with HTTP;
Mon, 3 Jan 2011 11:37:06 +0200
Message-ID:
Date: Mon, 3 Jan 2011 11:37:06 +0200
Subject: test
From: [email protected]
User-Agent: SquirrelMail/1.4.20
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
test
I have a Mac mini server i want to setup to host a couple of things.
My setup is as follows:
The WAN connection (static IP and ISP nameservers) goes into the wan port of the Airport Extreme. The Mac mini server is connected to one of the ethernet ports. The mac mini will host my domain something.com.
My settings so far: Airport Express gets:
96.x.x.x as the external static IP from the ISP
174.y.y.y as the nameserver
Mac mini server always gets a reserved DHCP IP from the Airport Express:
10.0.1.3 is the server's ip
10.0.1.1 as the dns (this ip is the airport express itself)
My dns server has an A record pointing to ns.something.com and a PTR doing the reverse.
I've already added my 96.x.x.x to point ns.something.com with my registrar as attached.
NOW: Nobody seems to be able to access my ns.something.com to resolve any of my records. From a any computer in my network I CAN see my ns and everything works. The outside on the other hand does not... it's as if the airport extreme which "holds" the exterior 94.x.x.x address doesn't pass DNS along to my 10.0.1.3 ns server.
I have the server managing the airport. Isn't this supposed to work?
I host my own multiple Websites on my server. How do i setup my own child nameserver?
There are 4 different websites, with .com and .net and .ro at the end. I moved them to my own server.
My Domain Administration (Registrar) let's me define my own child nameserver with my own IP and i've added my nameserver as my domain nameservers list.
ns.something.ro as the first and only in the nameservers list
ns.something.ro with my own IP address as the child nameserver
I've setup everything and it works (kind of). When i use my ns IP adress directly i can of course access everything. Using "normal" external dnses will not work. As expected others on the web can't resolve correctly.
What's wrong? Am i missing something?
Reinstalled Windows on my development box, forgot to backup any of my work in progress databases in SQL Server Express 2008? Can i recover anything?
I still have the files from the old install. Where do i look?