Solved

Lion server private vs. internet host name

Posted on 2012-03-25
4
993 Views
Last Modified: 2012-04-04
im setting up a lion server as a file server, mail server, ical, address book, and wiki server.  I'll also be running as an open directory master, serving a mix of approx 15 desktops/laptops.

am i better off setting it with a private network name, such as server.mycompany.private, or with an internet routable name, such as server.mycompany.com?

Are there security concerns for its host name as internet routable?

ideally i'd like the laptops to access ical / address book / wiki / mail outside of the local network, not sure if the host name matters for that, and also not sure if the routable name represents a significant security threat.

thank you
0
Comment
Question by:kaplancomputers
  • 2
4 Comments
 
LVL 76

Expert Comment

by:arnold
Comment Utility
You should use internal and then use the mail server configuration to specify the external domain that it will be using and masquerade if you want it to reflect the external name in the headers.
As long as your external domain points to your public IP and your outside router is configured to pass the appropriate traffic to your internal server and you internal server's firewall if any is configured to allow that traffic and the user has  the correct username/password to provide you should be set.
0
 
LVL 13

Accepted Solution

by:
maximus5328 earned 500 total points
Comment Utility
There is no security concerns in giving the server a .com name. However, you shouldn't use server.mycompany.com for different reason. After you set up DNS on the server - and you should in order for Open Directory to work properly - the server will become authoritative for mycompany.com zone. This can potentially become a problem (ex. the stations on your network will not be able to access mycompany.com website).
That said, you can go with either server.mycompany.private or something like server.office.mycompany.com - in either case you will configure the gateway firewall to allow access to server from remote clients.
0
 

Author Comment

by:kaplancomputers
Comment Utility
Maximus, thx very much for your comments. Does using a .private address complicate remote users that want to use the iCal or address book services from the lion server?

Can they still use those services outside of the local network with a .private?
0
 
LVL 13

Expert Comment

by:maximus5328
Comment Utility
I think, with .private you will be able to connect to the server from outside using port forwarding on the gateway. You will definitely be able to connect using VPN.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

In this article we have discussed about the OS X EI Capitan and how to fix Wi-Fi issue in OS X El Capitan. We have explained how to delete system level preferences and create a new Wi-Fi location to resolve Wi-Fi issue.
In this article we discuss how to recover the missing Outlook 2011 for Mac data like Emails and Contacts manually.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now