[qmailtoaster] Re: 2 NIC
On 05/21/2012 11:59 AM, Cecil Yother, Jr. wrote: On 05/21/2012 11:46 AM, Eric Shubert wrote: On 05/21/2012 11:24 AM, Cecil Yother, Jr. wrote: It resolves to the correct address, but will not answer. I just added the LAN address, ie. Listen 192.168.0.168:80 to the httpd.conf file and now it answers and I'm able to access the pages, but it's not answering them via the WAN. -- That's nothing to do with name resolution. It's a problem with apache config. Have you tried Listen *:80 ? It was Listen *:80 and didn't work, but it still doesn't answer to the WAN which it should. I know the WAN address works since I can use a proxy server or access from my home without issue. It's not a big deal since I can do what I need to, but the setup is not working as expected and I want to know why. Likely a routing problem then. Did you have a look at the routing table? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: 2 NIC
On 05/21/2012 11:46 AM, Eric Shubert wrote: On 05/21/2012 11:24 AM, Cecil Yother, Jr. wrote: It resolves to the correct address, but will not answer. I just added the LAN address, ie. Listen 192.168.0.168:80 to the httpd.conf file and now it answers and I'm able to access the pages, but it's not answering them via the WAN. -- That's nothing to do with name resolution. It's a problem with apache config. Have you tried Listen *:80 ? It was Listen *:80 and didn't work, but it still doesn't answer to the WAN which it should. I know the WAN address works since I can use a proxy server or access from my home without issue. It's not a big deal since I can do what I need to, but the setup is not working as expected and I want to know why. I hesitate to ask this, but what's the point of using 2 nics on a web server this way? Because server management, and file transfers are faster using the LAN. --
[qmailtoaster] Re: 2 NIC
On 05/21/2012 11:24 AM, Cecil Yother, Jr. wrote: It resolves to the correct address, but will not answer. I just added the LAN address, ie. Listen 192.168.0.168:80 to the httpd.conf file and now it answers and I'm able to access the pages, but it's not answering them via the WAN. -- That's nothing to do with name resolution. It's a problem with apache config. Have you tried Listen *:80 ? I hesitate to ask this, but what's the point of using 2 nics on a web server this way? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: 2 NIC
On 05/21/2012 11:18 AM, Eric Shubert wrote: On 05/21/2012 11:14 AM, Cecil Yother, Jr. wrote: On 05/21/2012 11:12 AM, Eric Shubert wrote: On 05/21/2012 10:59 AM, Cecil Yother, Jr. wrote: I am not sure I quite understand why it doesn't work and a resolver is needed. If I do a dig it answers to the proper IP. It stands to reason that I should be able to access that server through a web browser, and it cannot. What is a resolver going to tell my system that it already doesn't know ? On 05/21/2012 10:52 AM, Eric Shubert wrote: I don't think so. I don't think you should have the same name twice in your hosts file. I'm not sure off hand which address linux would return in this case. (How would it know when to return which one?) What makes this work is that one resolver (your local resolver) is used when connected to the LAN which returns the LAN address corresponding to the name, and a different resolver (internet authoritative dns) is used when connected to the WAN. A firewall such as IPCop can be used as a local resolver to provide the local addresses (recommended method). This can also be implemented in a single bind host using the split horizon feature, but that's a bit tricky. -- Did doesn't look at /etc/hosts. If your dig answers with the proper IP, you should be ok. Yes, it does. So that's why I'm a bit confused. -- What exactly is confusing? It resolves to the correct address, but will not answer. I just added the LAN address, ie. Listen 192.168.0.168:80 to the httpd.conf file and now it answers and I'm able to access the pages, but it's not answering them via the WAN. --
[qmailtoaster] Re: 2 NIC
On 05/21/2012 11:14 AM, Cecil Yother, Jr. wrote: On 05/21/2012 11:12 AM, Eric Shubert wrote: On 05/21/2012 10:59 AM, Cecil Yother, Jr. wrote: I am not sure I quite understand why it doesn't work and a resolver is needed. If I do a dig it answers to the proper IP. It stands to reason that I should be able to access that server through a web browser, and it cannot. What is a resolver going to tell my system that it already doesn't know ? On 05/21/2012 10:52 AM, Eric Shubert wrote: I don't think so. I don't think you should have the same name twice in your hosts file. I'm not sure off hand which address linux would return in this case. (How would it know when to return which one?) What makes this work is that one resolver (your local resolver) is used when connected to the LAN which returns the LAN address corresponding to the name, and a different resolver (internet authoritative dns) is used when connected to the WAN. A firewall such as IPCop can be used as a local resolver to provide the local addresses (recommended method). This can also be implemented in a single bind host using the split horizon feature, but that's a bit tricky. -- Did doesn't look at /etc/hosts. If your dig answers with the proper IP, you should be ok. Yes, it does. So that's why I'm a bit confused. -- What exactly is confusing? -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: 2 NIC
On 05/21/2012 11:12 AM, Eric Shubert wrote: On 05/21/2012 10:59 AM, Cecil Yother, Jr. wrote: I am not sure I quite understand why it doesn't work and a resolver is needed. If I do a dig it answers to the proper IP. It stands to reason that I should be able to access that server through a web browser, and it cannot. What is a resolver going to tell my system that it already doesn't know ? On 05/21/2012 10:52 AM, Eric Shubert wrote: I don't think so. I don't think you should have the same name twice in your hosts file. I'm not sure off hand which address linux would return in this case. (How would it know when to return which one?) What makes this work is that one resolver (your local resolver) is used when connected to the LAN which returns the LAN address corresponding to the name, and a different resolver (internet authoritative dns) is used when connected to the WAN. A firewall such as IPCop can be used as a local resolver to provide the local addresses (recommended method). This can also be implemented in a single bind host using the split horizon feature, but that's a bit tricky. -- Did doesn't look at /etc/hosts. If your dig answers with the proper IP, you should be ok. Yes, it does. So that's why I'm a bit confused. --
[qmailtoaster] Re: 2 NIC
On 05/21/2012 10:59 AM, Cecil Yother, Jr. wrote: I am not sure I quite understand why it doesn't work and a resolver is needed. If I do a dig it answers to the proper IP. It stands to reason that I should be able to access that server through a web browser, and it cannot. What is a resolver going to tell my system that it already doesn't know ? On 05/21/2012 10:52 AM, Eric Shubert wrote: I don't think so. I don't think you should have the same name twice in your hosts file. I'm not sure off hand which address linux would return in this case. (How would it know when to return which one?) What makes this work is that one resolver (your local resolver) is used when connected to the LAN which returns the LAN address corresponding to the name, and a different resolver (internet authoritative dns) is used when connected to the WAN. A firewall such as IPCop can be used as a local resolver to provide the local addresses (recommended method). This can also be implemented in a single bind host using the split horizon feature, but that's a bit tricky. -- Did doesn't look at /etc/hosts. If your dig answers with the proper IP, you should be ok. -- -Eric 'shubes' - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] Re: 2 NIC
I am not sure I quite understand why it doesn't work and a resolver is needed. If I do a dig it answers to the proper IP. It stands to reason that I should be able to access that server through a web browser, and it cannot. What is a resolver going to tell my system that it already doesn't know ? On 05/21/2012 10:52 AM, Eric Shubert wrote: I don't think so. I don't think you should have the same name twice in your hosts file. I'm not sure off hand which address linux would return in this case. (How would it know when to return which one?) What makes this work is that one resolver (your local resolver) is used when connected to the LAN which returns the LAN address corresponding to the name, and a different resolver (internet authoritative dns) is used when connected to the WAN. A firewall such as IPCop can be used as a local resolver to provide the local addresses (recommended method). This can also be implemented in a single bind host using the split horizon feature, but that's a bit tricky. --
[qmailtoaster] Re: 2 NIC
I don't think so. I don't think you should have the same name twice in your hosts file. I'm not sure off hand which address linux would return in this case. (How would it know when to return which one?) What makes this work is that one resolver (your local resolver) is used when connected to the LAN which returns the LAN address corresponding to the name, and a different resolver (internet authoritative dns) is used when connected to the WAN. A firewall such as IPCop can be used as a local resolver to provide the local addresses (recommended method). This can also be implemented in a single bind host using the split horizon feature, but that's a bit tricky. -- -Eric 'shubes' On 05/21/2012 10:07 AM, Cecil Yother, Jr. wrote: Shouldn't this then work using the following in the hosts file? 192.168.0.xx mail.test.com 173.164.181.xx mail.test.com On 05/17/2012 11:19 PM, Dhulla, Deepen Vinod wrote: hi Use DNS not ip address. Example : You set your local DNS server with Caching...easy one is BIND DNS. like you have exampl : webmail.test.com as your DNS for using from outside officewhich connects to Internet ip. when in office use your local DNS, which points webmail.test.com to local ip. Thus same URL works internal & External. I have my Mail-server & DNS configured same one. and it works. - Deepen Dhulla “Nothing is particularly hard if you divide it into small jobs.” http://in.linkedin.com/in/deependhulla http://www.facebook.com/deependhulla http://www.twitter.com/deependhulla Skype: callto://deependhulla On Friday, 18-05-2012 on 10:52 Maxwell Smart wrote: Deepen, I got it all working. It turns out there were several issues at hand. The last that I have to sort is the connection between my desktop and the server. The firewall must be misconfigured. It's an odd one for sure. I can access the server via the LAN address, but not the WAN address. I can access all other outside web pages , but not my own. The firewall shouldn't require a specific rule, but something is not right with it. Thank you for you input. CJ Dear Maxwell you can use ETHO & ETH1 different ..provide you have two different network mask. Like I have Local Network & Internet Network. Whats your requirement actually. - Deepen Dhulla “Nothing is particularly hard if you divide it into small jobs.” http://in.linkedin.com/in/deependhulla http://www.facebook.com/deependhulla http://www.twitter.com/deependhulla Skype: callto://deependhulla On Tuesday, 08-05-2012 on 8:36 Maxwell Smart wrote: It appears as though I have it all sorted. Does anyone have experience using 2 NIC's one for outside and one for inside? I can't seem to get them working in concert. Here's what I have ETH0 outside ETH1 inside If I set it up this way it times out after a while and connection from the outside is not possible. Turn off ETH1 and connectivity is restored. Anyone else have experience with this and how to make it work. Thanks for all the help On 05/07/2012 12:09 PM, Alvaro Alejandro Sepulveda Orellana wrote: User vpopmail Group vchkpw El 07-05-12 15:00, "Cecil Yother, Jr." escribió: OK, I moved the entire directory and it worked. Now I need to modify the file permissions of my vpopmail directory. I have moved the entire contents of the vpopmail folder and changed ownership to the correct ownership and now everything appears to be working. I may need to run the queue repair once more now that the ownership is corrected. It was root:root before when I ran it. On 05/07/2012 10:49 AM, Cecil Yother, Jr. wrote: I have had to move a server from a colo. The server motherboard was damaged. I need to retrieve the mysql databases and only have access to the hd from another system. Can this be done? If so how? -- Atentamente, Alvaro A. Sepúlveda Orellana. Departamento de Redes y Enlaces. Fono: 75 38 200 - 221 21 16. CEL:+569 95542326 -- -- -- - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-ma
Re: [qmailtoaster] Re: 2 NIC
On Friday 18 May 2012 09:53 PM, Eric Shubert wrote: I've found the same thing. It appears that some network devices don't let you do a u-turn, coming from the inside and returning to the inside. I'm not sure which ones or why that is, but I'd like to know more about it. BL, Deepen's solution works for me as well. This randomness in how different gateway devices behave was a blessing in disguise for me - I ended up learning a bit more about DNS :). Bharath - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
[qmailtoaster] Re: 2 NIC
I've found the same thing. It appears that some network devices don't let you do a u-turn, coming from the inside and returning to the inside. I'm not sure which ones or why that is, but I'd like to know more about it. BL, Deepen's solution works for me as well. -- -Eric 'shubes' On 05/17/2012 11:19 PM, Dhulla, Deepen Vinod wrote: hi Use DNS not ip address. Example : You set your local DNS server with Caching...easy one is BIND DNS. like you have exampl : webmail.test.com as your DNS for using from outside officewhich connects to Internet ip. when in office use your local DNS, which points webmail.test.com to local ip. Thus same URL works internal & External. I have my Mail-server & DNS configured same one. and it works. - Deepen Dhulla “Nothing is particularly hard if you divide it into small jobs.” http://in.linkedin.com/in/deependhulla http://www.facebook.com/deependhulla http://www.twitter.com/deependhulla Skype: callto://deependhulla On Friday, 18-05-2012 on 10:52 Maxwell Smart wrote: Deepen, I got it all working. It turns out there were several issues at hand. The last that I have to sort is the connection between my desktop and the server. The firewall must be misconfigured. It's an odd one for sure. I can access the server via the LAN address, but not the WAN address. I can access all other outside web pages , but not my own. The firewall shouldn't require a specific rule, but something is not right with it. Thank you for you input. CJ Dear Maxwell you can use ETHO & ETH1 different ..provide you have two different network mask. Like I have Local Network & Internet Network. Whats your requirement actually. - Deepen Dhulla “Nothing is particularly hard if you divide it into small jobs.” http://in.linkedin.com/in/deependhulla http://www.facebook.com/deependhulla http://www.twitter.com/deependhulla Skype: callto://deependhulla On Tuesday, 08-05-2012 on 8:36 Maxwell Smart wrote: It appears as though I have it all sorted. Does anyone have experience using 2 NIC's one for outside and one for inside? I can't seem to get them working in concert. Here's what I have ETH0 outside ETH1 inside If I set it up this way it times out after a while and connection from the outside is not possible. Turn off ETH1 and connectivity is restored. Anyone else have experience with this and how to make it work. Thanks for all the help On 05/07/2012 12:09 PM, Alvaro Alejandro Sepulveda Orellana wrote: User vpopmail Group vchkpw El 07-05-12 15:00, "Cecil Yother, Jr." escribió: OK, I moved the entire directory and it worked. Now I need to modify the file permissions of my vpopmail directory. I have moved the entire contents of the vpopmail folder and changed ownership to the correct ownership and now everything appears to be working. I may need to run the queue repair once more now that the ownership is corrected. It was root:root before when I ran it. On 05/07/2012 10:49 AM, Cecil Yother, Jr. wrote: I have had to move a server from a colo. The server motherboard was damaged. I need to retrieve the mysql databases and only have access to the hd from another system. Can this be done? If so how? -- Atentamente, Alvaro A. Sepúlveda Orellana. Departamento de Redes y Enlaces. Fono: 75 38 200 - 221 21 16. CEL: +569 95542326 -- -- - Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! - Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com
Re: [qmailtoaster] re: 2 NIC
Dear Maxwellyou can use ETHO & ETH1 different ..provide you have two different network mask.Like I have Local Network & Internet Network.Whats your requirement actually. - Deepen Dhulla “Nothing is particularly hard if you divide it into small jobs.” http://in.linkedin.com/in/deependhulla http://www.facebook.com/deependhulla http://www.twitter.com/deependhulla Skype: callto://deependhullaOn Tuesday, 08-05-2012 on 8:36 Maxwell Smart wrote: It appears as though I have it all sorted. Does anyone have experience using 2 NIC's one for outside and one for inside? I can't seem to get them working in concert. Here's what I have ETH0 outside ETH1 inside If I set it up this way it times out after a while and connection from the outside is not possible. Turn off ETH1 and connectivity is restored. Anyone else have experience with this and how to make it work. Thanks for all the help On 05/07/2012 12:09 PM, Alvaro Alejandro Sepulveda Orellana wrote: User vpopmail Group vchkpw El 07-05-12 15:00, "Cecil Yother, Jr."escribió: OK, I moved the entire directory and it worked. Now I need to modify the file permissions of my vpopmail directory. I have moved the entire contents of the vpopmail folder and changed ownership to the correct ownership and now everything appears to be working. I may need to run the queue repair once more now that the ownership is corrected. It was root:root before when I ran it. On 05/07/2012 10:49 AM, Cecil Yother, Jr. wrote: I have had to move a server from a colo. The server motherboard was damaged. I need to retrieve the mysql databases and only have access to the hd from another system. Can this be done? If so how? -- Atentamente, Alvaro A. Sepúlveda Orellana. Departamento de Redes y Enlaces. Fono: 75 38 200 - 221 21 16. CEL: +569 95542326 --