Lion server private vs. internet host name

im setting up a lion server as a file server, mail server, ical, address book, and wiki server.  I'll also be running as an open directory master, serving a mix of approx 15 desktops/laptops.

am i better off setting it with a private network name, such as server.mycompany.private, or with an internet routable name, such as server.mycompany.com?

Are there security concerns for its host name as internet routable?

ideally i'd like the laptops to access ical / address book / wiki / mail outside of the local network, not sure if the host name matters for that, and also not sure if the routable name represents a significant security threat.

thank you
kaplancomputersAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
maximus5328Connect With a Mentor Commented:
There is no security concerns in giving the server a .com name. However, you shouldn't use server.mycompany.com for different reason. After you set up DNS on the server - and you should in order for Open Directory to work properly - the server will become authoritative for mycompany.com zone. This can potentially become a problem (ex. the stations on your network will not be able to access mycompany.com website).
That said, you can go with either server.mycompany.private or something like server.office.mycompany.com - in either case you will configure the gateway firewall to allow access to server from remote clients.
0
 
arnoldCommented:
You should use internal and then use the mail server configuration to specify the external domain that it will be using and masquerade if you want it to reflect the external name in the headers.
As long as your external domain points to your public IP and your outside router is configured to pass the appropriate traffic to your internal server and you internal server's firewall if any is configured to allow that traffic and the user has  the correct username/password to provide you should be set.
0
 
kaplancomputersAuthor Commented:
Maximus, thx very much for your comments. Does using a .private address complicate remote users that want to use the iCal or address book services from the lion server?

Can they still use those services outside of the local network with a .private?
0
 
maximus5328Commented:
I think, with .private you will be able to connect to the server from outside using port forwarding on the gateway. You will definitely be able to connect using VPN.
0
All Courses

From novice to tech pro — start learning today.