AEBS and Lion Server DHCP

Hi All!
I have a scenario I want some input on.
1 Mac Mini Lion Server 10.7.2
1 TC 2nd Gen
x iPads
x iPhones
2 Lion clients
I want to use the Lion Server for all collaboration services, and use Profile Manager to provide central management of iOS and Lion clients, and I want to use network accounts on the server.
All is set up and working well, mail, ical, wiki, addressbook, VPN servers, profile manager settings, apart from one thing. how do I best push DNS server settings to the client to point to the server?
In the TC there are no way to set what DNS server is served to clients. That would solve my case in an instant. Now all clients get the ISPs DNS servers, or pass-through of whatever DNS server is set up on the TC.
I have 2 possible solutions:
1. Set up TC to only provide 1 DHCP address reserved for the server, and then use DHCP on the Lion Server for the internal clients. This will work as it has been tested by other users here on this forum.
2. Set the DNS server on the TC to point to the local Lion Server. I actually just came up with this idéa as I was typing.... maybe that is the answer? The inernal clients get the internal server as DNS and the server uses forwarders or roothints.
What do you think? If you have this combo, TC/AEBS and Lion Server, how did you solve it?
/Hasse

Hi All!
I actually found the solution myself. Soluton 2 does the trick brilliantly! I can't imagine why I didn't think of this before. I have searched this forum for a solution too, but this just was too easy . The Lion Server advanced admin guide didn't mention this either, even in the chapter about AEBS coexistance.
/Hasse

Similar Messages

  • Lion and lion server add on for Mac Mini Server

    I bought the Lion OS and Lion Server add on for my Mac Mini Server which runs Snow Leopard Server. When trying to install the Lion,
    it requests the Add on to be available, however the add on requests the Lion to be already installed before it can be downlaoded through
    App store. I made my purchases over the phone as neither was available in stores anymore. Egg and chiken dilema.
    I do not have a physical DVD with the Snow Leopard (Client) to follow some of the instructions I have read in the communities. Any
    workaround?

    For the Mini you must have Lion client installed to purchase the Server. You can download Lion from the Mini while it's running Snow Leopard. Once Lion is installed you should then be able to purchase the Server.
    Unlike past OS X Server releases the bulk of the software is within the Lion client. The Server is more or less a type of add-on to provide all the Server utilities and support. It's a relatively small download compared to the client.

  • Can you run Lion os and Lion Server os on the same Mac mini?

    I'm a windows convert to Mac and I'm interested in running a standard Lion Client, but at the same time running Lion Server on the same Mac Mini (Server Edition).  My needs for the Lion Server OS is to handle e-mail, a Web Site, and file sharing between the server to a secondary PC, iPad, and iPhone.  But at the same time I wish to dive into the Mac (Apple) experience.  I just wish to be able to do this on the same machine.
    As a secondary question, is it possible to merge two different iTune Accounts into one?  Is it possible to share items purchased on one iTunes account with an iPad that is tied to a different iTunes Account?

    1. Yes, but you'll need separate partitions for each OS, or run the client OS in emulation.
    2. It isn't possible to combine the accounts, but a single iTunes library can contain content from multiple iTunes Store accounts.
    (61769)

  • VPN and Lion Server

    I set up a VPN on my OS X Lion server however it seems  there is a probelm with the file permissions.  I set the permission to Read and Write, however when connected through the VPN I open a document, edit and save, it saves as a "read only" document and locks file.  In Filemaker Pro if I create a document when connected through the VPN and save it on my server, no one connected to the network can open it. Any ideas?
    Thanks

    any help please?
    I read that it my be firmware 7.5.2 and downgrading to 7.4.2 resolves it. Well, that would work if I had 7.4.2 but it's not available under the firmware update.

  • Photoshop CS5.1 and Lion Server (MacMini Mid 2011)

    Hello community,
    I have a very big problem using Photoshop CS5.1 (Mac Mini Server-Edition Mid 2011, Lion 10.7.2) - there are several mouse-pointer issues when I try to work with brushes or stamps. Depending on the size of the brush it's not shown the correct way. The icon does not show the brush itself and when I try to use the brush the mouse pointer is not the center of the brush but the uper left corner. If I zoom into the image it's possible that the same brush is working the way it should be but if I zoom out the brush does not work again. The issue seems to depend on brush size and zoom-factor of the image.
    My idea for better understanding of the problem was to record the screen activity with QuickTime. I did but as I watched the recorded photoshop activity looked perfect (allthough it did not as I recorded the actions). Now I recorded the screen activity with a movie camera, just to show, what's wrong here. Please excuse the not so perfect video quality...
    http://www.youtube.com/watch?v=ZzLJFDOWLWo
    It's annoying.
    Very similar problem in Lightroom, mouse pointer do not work the correct way depending on brush size (brish icon is not shown in image depending on size).
    Adobe does not offer support for the Server-Edition. Apple does not allow to install 10.6 on Mac Mini Mid 2011 (on my MBP Early 2011 PS CS 5.1 runs without such problems). Something's going wrong here.
    I need a solution, Photoshop CS5.1 is not useable under 10.7.2 Server. Anyone may help?
    Thank you.
    André

    Hello Doug,
    thank you for your answer. First of all: Adobe says that it's an Apple problem. Apple says that I'm not allowed to install any other OS than Lion Server on my machine - even the "normal" Lion OS seems to be not allowed.
    For me as a customer this situation is not very satisfying - I try to run a 1500$ software suite on a 1000$ Apple computer and it does not work, but nobody even tries to solve this issue. Adobe offers no support, Apple offers no bug fixes.
    This problem, btw, also appears when a MacBook Air is used. Even some MacBook Pros seem to be unable to run Phootshop CS5.1 under Lion. For me this does not look like an Lion server-issue.
    André

  • Lion Server VPN, Can Connect Locally, Not Remotely

    I have both Lion and Lion Server installed on my Core 2 Duo iMac, mainly because I want the VPN feature of Server.
    I configured everything correctly for the VPN, and can connect to it with no problems from my iPhone and iPad when I am within my own LAN (the server and the iPhone/iPad are on the same IP range and subnet).
    I also used the automatic config within the Server app to configure my AirPort Extreme N Base Station.   Looking at the Port Mapping section of my ABS from within AirPort Utility, I do in fact see that VPN Service (L2TP) is configured with the following UDP ports: 500, 1701 and 4500.  Those ports ARE pointing to the iMac that is running the VPN server.  Firewall on that iMac is turned OFF.
    However, I am unable to connect my iPhone to the VPN Server using my Public IP address.  I have tried it from within my network (out of network to internet the back), from my Verizon MiFi or from my iPhone's 3G connection (well, in my area it is still Edge).  The iPhone simply sits on "Connecting" for a few seconds, then an alert comes up stating "The L2TP-VPN server did not respond.  Try reconnecting. If the problem..." yadada.
    I AM, however, able to get Web Sharing to work via my Public IP address, as well as VNC.
    I also cannot connect to the VPN via the Public IP with other devices like my iBook, PowerBook G4, Windows 7 PC, or iMac G5.  They ALL CAN connect via the local network 10.1.x.x IP address.
    Am I missing something here?  I did all of the automatic configurations, and all of the ports appear to be properly open.

    Not in my case, Per, no.
    I just did a tcpdump between various systems.
    For those that do NOT work (client iPhone, client 10.7 and server 10.7) the tcpdumps look like so:
    19:12:33.883057 IP Home.60845 > LionServer.500: isakmp: phase 1 I ident
    19:12:33.884410 IP LionServer.500 > Home.60845: isakmp: phase 1 R ident
    19:12:33.910379 IP Home.60845 > LionServer.500: isakmp: phase 1 I ident
    19:12:33.918362 IP LionServer.500 > Home.60845: isakmp: phase 1 R ident
    19:12:33.958995 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 1 I ident[E]
    19:12:33.959349 IP LionServer.4500 > Home.60846: NONESP-encap: isakmp: phase 1 R ident[E]
    19:12:33.959461 IP LionServer.4500 > Home.60846: NONESP-encap: isakmp: phase 2/others R inf[E]
    19:12:34.997414 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
    19:12:34.998323 IP LionServer.4500 > Home.60846: NONESP-encap: isakmp: phase 2/others R oakley-quick[E]
    19:12:35.016983 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
    19:12:35.019173 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x1), length 132
    19:12:35.052641 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
    19:12:35.595022 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x2), length 132
    19:12:37.597957 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x3), length 132
    19:12:38.212127 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
    19:12:41.214447 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
    19:12:41.603061 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x4), length 132
    19:12:44.216935 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
    19:12:45.609900 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x5), length 132
    19:12:49.616860 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x6), length 132
    19:12:53.623054 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x7), length 132
    19:12:54.965357 IP Home.60846 > LionServer.4500: isakmp-nat-keep-alive
    19:12:55.032098 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I inf[E]
    19:12:55.036420 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I inf[E]
    19:12:56.228356 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
    Note: I've done this over wired and wireless as well as 3G -- the transport on the client end is NOT the issue.
    A connection that works, from iPhone ONLY (on 3G or Wireless) is:
    11:24:59.960105 IP Home.61168 > LeopardServer.500: isakmp: phase 1 I ident
    11:24:59.964119 IP LeopardServer.500 > Home.61168: isakmp: phase 1 R ident
    11:25:00.673976 IP Home.61168 > LeopardServer.500: isakmp: phase 1 I ident
    11:25:00.712858 IP LeopardServer.500 > Home.61168: isakmp: phase 1 R ident
    11:25:01.466127 IP Home.61169 > LeopardServer.4500: NONESP-encap: isakmp: phase 1 I ident[E]
    11:25:01.468180 IP LeopardServer.4500 > Home.61169: NONESP-encap: isakmp: phase 1 R ident[E]
    11:25:01.468546 IP LeopardServer.4500 > Home.61169: NONESP-encap: isakmp: phase 2/others R inf[E]
    11:25:02.954797 IP Home.61169 > LeopardServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
    11:25:02.978314 IP LeopardServer.4500 > Home.61169: NONESP-encap: isakmp: phase 2/others R oakley-quick[E]
    11:25:03.480886 IP Home.61169 > LeopardServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
    11:25:03.486763 IP Home.61169 > LeopardServer.4500: UDP-encap: ESP(spi=0x0a46a01f,seq=0x1), length 116
    11:25:04.032382 IP Home.61169 > LeopardServer.4500: UDP-encap: ESP(spi=0x0a46a01f,seq=0x2), length 116
    11:25:06.029801 IP Home.61169 > LeopardServer.4500: UDP-encap: ESP(spi=0x0a46a01f,seq=0x3), length 116
    11:25:06.517111 IP LeopardServer.4500 > Home.61169: UDP-encap: ESP(spi=0x088d7e27,seq=0x1), length 116
    11:25:06.742918 IP LeopardServer.4500 > Home.61169: UDP-encap: ESP(spi=0x088d7e27,seq=0x2), length 116
    And from there it's all normal.
    What never works:
    10.7 client to 10.7 server
    iPhone to 10.7 server
    The breakage seems to happen on 10.7 server here:
    19:12:35.019173 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x1), length 132
    19:12:35.052641 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
    After that first ESP packet, the Lion Server responds with another phase 1 ident.
    The Leopard server does not.
    It may still be something in my setup, but, there's nothing to configure on 10.7 server other than "on" and "off" and some IP addresses, which I'm nearly certain isn't the issue...but who knows.   Either the Lion Server ignores whatever is in that ESP packet, and starts over, or, iOS and OS X are sending it something it doesn't like and is forcing it to reset and start over.

  • How to reinstall OS X Lion Server

    I'm newbie os x admin . I bought new Mac Mini 2010 with Lion Server. I want to do RAID 0 with my HDD. 
    I make image for Recovery Partition. Then  format partition and do RAID 0.
    I setup with Mac OS X Lion 10.7 GM build 11A511
    I success to install but .... No Lion Server.
    I try to check Mac Store but I found  I need to buy  Lion Server License ?
    These is my Question
    1.  Lion Server that pre-install with Mac Mini is not license version or not?
    2.  Should  I  restore from  recovery partition  and get Lion Server from them ?
    3.  How I make recovery DVD or anything that easy to reinstall ?
    Thank You very much.

    The 2010 Mac mini Server did not come with Lion Server, it was shipped with Snow Leopard Server. To go from Snow Leopard to Lion is a paid upgrade, not a free update. Up until Snow Leopard there was a SL client OS and a SL Server OS. Now Lion Server is an add-on purchase to the Lion client. So you must buy and install the Lion client, then the second step is to buy and install the Lion Server add-on. You purchase both Lion and Lion Server through the Mac App Store.

  • Is lion server part of the lion osx install

    hi
    just a quick one,
    we have a mac mini with lion and lion server.
    this was set up only one week ago  by another member of staff who is now off site for a while.
    we want to reinstall and start again.
    i have erased the disc in the start up options the command R option.(i hope that was the best way)
    i have started to download lion osx and left this running at work so hopefully it'll be ready in the morning - does this automatically install Lion Server or is this a separate download.
    i assumning when this came out the box lion server was part of it, but not sure about re-installation
    any advice is welcome
    regards
    Gavin

    Lion Server is a seperate download in the App Store.

  • Can you install Lion server but still use the mac as normal?

    I have a Macbook Pro and I would like to install Lion server. I was wondering if when I buy it off the mac app store if it works like any application so I can like close out of the server and use the mac as normal like to get on the Internet, or if Lion server installs like a new operation system and I can't use my mac as normal?
    Thanks
    WirelessCharge

    Welcome to the Apple Support Communities
    Of course. On Mountain Lion and Lion, Server is just an app, so you can close it and turn off its services whenever you want to use your Mac as usual, although you don't have to close Server app to use the computer as normal

  • I want to reinstall lion server

    I have a Mac Pro that came with Lion Server installed.  I went through the setup and added it to my network.  As I look through the documentation, I'm thinking I want to reinstall it and run it as a migration from our Mac Pro with Snow Leopard Server.  Can I do a reinstall by holding the command R on bootup and then go through and do a migration?

    Yes I did do it from the recovery section. I think when I first booted up Lion Server, the App Store registered Lion and Lion Server on my Apple ID Account so I can downloaded them again for free.
    So, I used recovery to reinstall Lion (for free) and once it had all installed, I downloaded Lion Server again (for free from the Apple Mac App Store).
    Hope this helps!

  • Where to buy lion server

    Hallo,
    i want to use an mac, which isn't compatible to Mountain Lion, as Server.
    In the Mac App Store i can't find the Lion Server App.
    Where can i buy Lion Server?
    Thanks.

    Welcome to the Apple Support Communities
    OS X Lion and Lion Server aren't sold anymore in the App Store, so now you have to call Apple to purchase OS X Lion or OS X Lion Server > http://support.apple.com/kb/HE57 They'll give you a redeem code that you will have to insert in the Mac App Store to install Lion Server

  • Does anyone know how to publish a site using Lion server.

    I have made a web site using I web and was trying to publish it using FTP and lion server but was quite sure were to find the server address and other required info.
    If anyone can help it'd be greatly appreciated.
    Thanks

    You shouldn't need to use ftp to publish a site when using a server, this is the whole point, that you are not uploading anywhere external, but are hosting yourself on a dedicated computer running a server.
    This is not really the place to ask.  There should be more forums here that are specially dedicated to Lion server issues.
    Try looking at the pages on the Apple site under info on Lion server and there should be a user manual for you to look at for Lion sever.  Try looking at this.
    This is an iWeb forum so not really the right place to ask questions regarding server issues.

  • Lion server wont kerberize to AD

    I can get Lion server to connect to AD without issue, but even after I set the server permissions in AD proper delegation rights, I still can Kerberize. Any ideas what to try? I reinstalled Lion and lion Server fresh again.

    Ok, I figured this out. Here's what I did:
    1. Bind Lion server to the 2003 AD
    2. Set up the server as an OD Master
    3. Set OD to SSL (I believe this is optional, but better secure than not)
    4. Bind client mac to AD.
    5. Bind client mac to lion server OD (Ldap3)
    6. Pull user from the AD on the Add User screen in Lion Server.
    7. Make group for user, add user to said group.
    Upon login with the AD user, it autheticated, and it added the user network folder to the dock.
    It still isn't pulling dock permissions, but I think that's just me needing to understand Profile Manager configurations better.
    The next step is to find a way to forward the local Documents folder to the network folder that's on the dock. That will be a different discussion.
    So in a nutshell, if you want your mac clients to authenticate to your windows AD, and pull permissions from Lion Server, the above should do the trick. Don't worry about Kerberizing or any of that junk.

  • How can I configure Lion server or mail.app to show IMAP subfolders with mailboxes?

    I'm sure we've all seen the weird IMAP glitch where mail subfolders appear down lower on the mail.app pane instead of nested neatly under the mailbox itself.  Usually you can get around this by changing the Inbox IMAP prefix to "" or "INBOX" or "/" or some such path that the server recognizes as the root path to your IMAP folder.  Unfortunately, this sometimes means you are unable to work with those folders or introduce other problems.
    Since I am running Lion (Client) and Lion Server as my mail host, I would think that there is an appropriate answer to this either on the mail.app client settings, or perhaps with a Lion Server configuration through DOVECOT.  I don't mind if the solution is a command-line one, but I need to be able to easily set up my mailboxes so that mail subfolders appear properly under each mailbox, instead of being hidden away lower on the page where it is very inconvenient to find, especially when you are using multiple email accounts.
    Client Machine Lion 10.7.3
    Server Machine Lion Server 10.7.3
    Please Help!!!!

    I've tried editing /etc/dovecot/conf.d/10-mail.conf on Lion Server to add the following:
    namespace private {
      type = private
      separator = /
      prefix = INBOX/
      inbox = yes
    This puts me in a catch-22:
    If I leave the "IMAP Path Prefix" setting in the account Advanced tab empty, I can see the subfolders and move messages in and out of them, but can't add or edit the folders or heirarchy.
    If I set the "IMAP Path Prefix" to "INBOX" I can add and edit subfolders, but they don't appear nested under my inbox.
    Please help!

  • Is Lion Server a good personal VPN solution?

    I'd like to set up a VPN server on my home network for the following reasons:
    Enable access to my network shares from my Air when I'm away from home
    Encrypt my connections from my iPad, iPhone, and Air when on unsecured WiFi networks
    For #2, I currently use Witopia, but it's a fairly expensive service and with Lion Server now just $50, why not do it myself and add the ability to access my local network from anywhere?
    What I'm wondering is whether running Lion Server on my Mini is a good option for achieving this without undue risk to my local network, or is it going to be a big pain to setup?

    After the Genius Bar guys at our Hamburg Apple Store had given up on this issue, I finally solved the problem - my VPN is up and running!
    After re-installing both OS X Lion and Lion Server several times I realized that certain settings (apparently also for the VPN server) are kept  in the invisble recovery partition that Lion installed on my Mac Mini  (e.g., 'com.apple.RemoteAccessServers.plist'). They even survived a reformatting of the hard drive. Something must have gone wrong the first time I tried to set up the VPN server and the "sudo serveradmin settings vpn" command revealed that the settings survived every re-installation.
    Therefore, I physically removed the hard drive and formatted it using a different Mac running Snow Leopard.
    It is important not only to erase the disk but also to partition it. This might even work under Lion without having to remove the drive...
    After another re-installation of OS X Lion on the clean drive over the Internet from Apple's server (pressing the command-R keys while rebooting) I did a system update and subsequently installed the Server app.
    After that I was able to start the VPN server from the Server app.
    Inside my local network it was then possible to connect to the VPN server from an iPad 2 (iOS 4.3.5) and from an old Powerbook G4 (Leopard), but not from a MacBook Pro with Snow Leopard.
    However, all clients were able to make an external connection through my Deutsche Telekom Router (SpeedPort 722V) with forwarding of ports 1701 (UDP), 500 (UDP) and 4500 (UDP) and enabled GRE and ESP protocols.
    For the sake of security I have disabled (closed) all arbitrary ports of the server's own firewall while it's local network ports (192.168.x.y) are all open to enable any internal connections.
    It is a serious restriction, however, that the Lion Server only offers the L2TP VPN protocol. Maybe the commercial iVPN solution is an acceptable workaround: http://macserve.org.uk/.
    Regards, Björn

Maybe you are looking for

  • Why can I no longer connect to my home WIFI

    Hi All This is my first post and I know from searching online for the last week or so for a solution that this has been a problem for others before. I have tried all of the proposed solutions I have found including, resetting the network settings, re

  • Free Good scenario for a standalone CRM

    Hello Experts We are on CRM 7.0. I'm trying to configure Free goods determination in CRM sales order TSA. We have done all the relevant customizing under CRM -> Basic Functions -> Free Goods. Free Goods Procedure: 0NA001 Condition Type: 0NA0 Access S

  • Why is my Mac running slow? I have my Etresoft findings.

    Hardware Information:           iMac (27-inch, Late 2009)           iMac - model: iMac10,1           1 3.06 GHz Intel Core 2 Duo CPU: 2 cores           4 GB RAM Video Information:           ATI Radeon HD 4670 - VRAM: 256 MB System Software:          

  • Tv shows on my nano

    I purchased some tv shows on itunes, but they won't transfer to my nano

  • Editing forms in version 9 problem

    All prior to 9 versions of Acrobat Pro allowed to use "select all" command for one kind of fields, for example all text fields or all check mark fields, allowing to apply changes (like size of font for example) to all selected text fields at once or