Link to home
Start Free TrialLog in
Avatar of kaplancomputers
kaplancomputersFlag for Afghanistan

asked on

Lion server private vs. internet host name

im setting up a lion server as a file server, mail server, ical, address book, and wiki server.  I'll also be running as an open directory master, serving a mix of approx 15 desktops/laptops.

am i better off setting it with a private network name, such as server.mycompany.private, or with an internet routable name, such as server.mycompany.com?

Are there security concerns for its host name as internet routable?

ideally i'd like the laptops to access ical / address book / wiki / mail outside of the local network, not sure if the host name matters for that, and also not sure if the routable name represents a significant security threat.

thank you
Avatar of arnold
arnold
Flag of United States of America image

You should use internal and then use the mail server configuration to specify the external domain that it will be using and masquerade if you want it to reflect the external name in the headers.
As long as your external domain points to your public IP and your outside router is configured to pass the appropriate traffic to your internal server and you internal server's firewall if any is configured to allow that traffic and the user has  the correct username/password to provide you should be set.
ASKER CERTIFIED SOLUTION
Avatar of maximus5328
maximus5328
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of kaplancomputers

ASKER

Maximus, thx very much for your comments. Does using a .private address complicate remote users that want to use the iCal or address book services from the lion server?

Can they still use those services outside of the local network with a .private?
I think, with .private you will be able to connect to the server from outside using port forwarding on the gateway. You will definitely be able to connect using VPN.