How to setup DNS correctly

Dear all,
I'm trying to setup my first macmini-server correctly so that i can access files and ical chances of my coworkers when I'm on the road. After reading many posting I now it is important to set up the DNS correctly, as many things depend on this.
Still I get this messages in the "Next Step"-pdf after the installation:
http://dl.dropbox.com/u/427417/dns%20configruation.jpg
This is my DNS-setup:
- I have one static IP: 80.xxx.xxx.222
- I made a A-Typ entry at my Domain-Registrar: miniserver.example.com => 80.xxx.xxx.222
- My ISP made a PTR Entry in his DNS-Servers: 80.xxx.xxx.222 => miniserver.example.com
Both are working when I test it with: http://www.mxtoolbox.com/
And this is my hardware-setup:
Modem => linksys 160N-Router with public IP 80.xxx.xxx.222 =>switch => 4 Macs and my macminiserver with a fixed internal IP (192.168.1.133 made with DHCP-Reservation on the Linksys Router). FTP-Portforwarding to 192.168.1.133
What confuses me is the fact, that I can turn on FTP on the miniserver and access it from outside with a ftp-client using "miniserver.example.com" as the server name. For me this working FTP-connection looks like I have setup the Public IP/DNS things right? But why I still get the is message in "next Step"
I'm glad about any reply which helps me to understand the this.
Dietmar
Message was edited by: dietmar
Message was edited by: dietmar

Dear MrHoffman
Thank you for your answer. It looks like in your answer is everything I need to now. But as I'm not a professional I only understand your recommendations partially. Here are my thoughts about it:
MrHoffman wrote:
You'll usually want an external static IP and an external DNS domain that gets you to your firewall device, and then you implement a VPN at the firewall to connect to your LAN. The external DNS is (or static IP) is how you get connected to your firewall.
I do have a external static IP: 80.xxx.xxx.222 and DNS domain: miniserver.example.com which both gets me to my firewall (within the linksys router). So I think I've got this part right?
Within your LAN, here's [getting DNS going|http://labs.hoffmanlabs.com/node/1436]; but that's LAN-local stuff and useful for getting around once you have the VPN connected. You probably don't want to be serving public DNS; leave that to your ISP.
And yes, Mac OS X Server does really want to have DNS for itself either running locally on the box or within other DNS server(s) in your environment, and that usually then gets extended to running DNS for the rest of your LAN.
Setting up DNS on the Macmini Server for my local LAN will be my next task, but as this would be a to long post I would like to ask you in a extra post about this. As I understand from your answer, I do server public DNS at the moment, also I did not intend this !!!
I generally encourage using an [external firewall-based VPN|http://labs.hoffmanlabs.com/node/275], as that approach simplifies the requirements here and particularly when you're using NAT as is typical. You VPN to the firewall, then the connection works like you're on the LAN.
My linksys router supports VPN-Passthrough and server-admin has the VPN-Service. Will this two do what you are recommanding me. I know I have to read into VPN first, before digging questions into others.
[ftp is nasty|http://labs.hoffmanlabs.com/node/530] in several dimensions (your credentials are exposed in cleartext, and it requires a fancy firewall or the ephemeral port range to be opened on one of the intervening firewall), and usually best avoided during debugging. ftp is older than the internet, and largely incompatible with firewalls. VPNs or sftp is usually a better approach (and because you can use certificates or such, you can reduce your exposure to brute-force password attacks or password sniffing), save for anonymous ftp access or file drops, and only get around to setting up ftp once you get the rest of your network working here.
FTP was only for testing, as I thought it is a simple way to test access to my server.
As for your confusion, in your zone-level settings, you have the name server referring to the name server itself as its forwarding entries; this definitely won't work. Look at my notes and specifically look for the details on setting up the forwarding entry for the zone. This is the zone-level display (your http://dl.dropbox.com/u/427417/dns1.png) and the nameserver: field. That needs to be your upstream DNS provider.
As written before, Local-DNS is the next thing to do/learn for me. But I have to leave for now to support a friend with his Mac thank you for your answers
Dietmar
here are my screenshot when setting up the mac osx server:
http://dl.dropbox.com/u/427417/networkname.jpg
http://dl.dropbox.com/u/427417/Hostname.jpg
Did I made something wrong here?
Is the field "Primary DNS Name" for local or public DNS ?? I thought it is for public: miniserver.example.com

Similar Messages

  • How to setup antispam correctly?

    I set anti-spam to true and do not fill in any of the rejectdomains, rejectsenders or rejectrecipients.
    when i use telent <ip> 25 to connect the smtp_in serivice
    it's failed.
    550 5.7.1 Spam check failed for your IP address
    If I set anitspam to false.It's all ok.
    why?
    And how to setup antispam correctly?

    I have struggled somewhat with the antispam settings, and find it a little confusing. Raffa is right when it comes to reverse DNS lookup. Reverse DNS must be configured by the originating ISP (where the physical connection goes), and has nothing to do with the "normal" DNS set up administered by the registrar for the domain name.
    This is possible when you know what network the user connects from. I find this to be a problem for users whith å portable PC connecting from different locations (home/office/travel), as normal user identification fails with the "Spam check failed for your IP address" error message.
    Has anyone successfully set up an OCS SMTP_IN that correctly allows users to send mail through this SMTP with the SPAM-check enabled? The documents in Metalink does not address my problem, as far as I can see.

  • How to setup DNS behind Airport Extreme and ISP that will not reverse DNS

    Hi,
    I am having issues setting up my Mac Mini with SLS. Right now my server is connected to the internet through my Airport Express. It gets a static address from the router (10.0.1.13). The router also has a static address from my ISP. I own the domain redcedarpoint.com. I have set the A record to point to my static router IP address. I also setup a CNAME for server.redcedarpoint.com to the same address.
    During the initial portion of setup SLS sees my ISP's domain versus my own domain and incorrectly fills the local domain name. I manually changed these to redcedarpoint.com and called the server 'server'. This puts server.redcedarpoint.com into all the host names. Everything seems to work, but now all my users get email addresses like [email protected] versus [email protected]. I have manually set mail host name to redcedarpoint.com (although this is wrong I think). It solves the email addressing issue, but now postfix gives me a warning about a duplicate:
    +Jan 27 21:20:45 server postfix/postmap[70670]: warning: /var/amavis/local_domains.db: duplicate entry: "redcedarpoint.com"+
    My question is: What should I fill in during setup and how should I setup DNS from my hosting service.
    By the way, I am also trying to funnel all inbound and outbound email through my premium Google Apps subscription.
    Here's also the result of postconf -n
    +Last login: Wed Jan 27 21:19:47 on ttys000+
    +server:~ ianknight$ postconf -n+
    +biff = no+
    +command_directory = /usr/sbin+
    +config_directory = /etc/postfix+
    +content_filter = smtp-amavis:[127.0.0.1]:10024+
    +daemon_directory = /usr/libexec/postfix+
    +debugpeerlevel = 2+
    +enableserveroptions = yes+
    +header_checks = pcre:/etc/postfix/customheaderchecks+
    +html_directory = /usr/share/doc/postfix/html+
    +inet_interfaces = all+
    +mail_owner = _postfix+
    +mailboxsizelimit = 0+
    +mailbox_transport = dovecot+
    +mailq_path = /usr/bin/mailq+
    +manpage_directory = /usr/share/man+
    +mapsrbldomains =+
    +messagesizelimit = 10485760+
    +mydestination = $myhostname, localhost.$mydomain, localhost, dmcwatering.com, internationalcardio.com+
    +mydomain = redcedarpoint.com+
    +mydomain_fallback = localhost+
    +myhostname = redcedarpoint.com+
    +mynetworks = 127.0.0.0/8,216.239.32.0/19,64.233.160.0/19,66.249.80.0/20,72.14.192.0/18,209.8 5.128.0/17,66.102.0.0/20,74.125.0.0/16,64.18.0.0/20,207.126.144.0/20,173.194.0.0 /16+
    +newaliases_path = /usr/bin/newaliases+
    +queue_directory = /private/var/spool/postfix+
    +readme_directory = /usr/share/doc/postfix+
    +recipient_delimiter = ++
    +relayhost =+
    +sample_directory = /usr/share/doc/postfix/examples+
    +sendmail_path = /usr/sbin/sendmail+
    +setgid_group = _postdrop+
    +smtpsasl_authenable = yes+
    +smtpsasl_passwordmaps = hash:/etc/postfix/sasl/passwd+
    +smtpdclientrestrictions = permit_mynetworks permitsaslauthenticated rejectrblclient zen.spamhaus.org permit+
    +smtpdenforcetls = no+
    +smtpdhelorequired = yes+
    +smtpdhelorestrictions = rejectinvalid_helohostname rejectnon_fqdn_helohostname+
    +smtpdpw_server_securityoptions = cram-md5,gssapi,login+
    +smtpdrecipientrestrictions = permitsaslauthenticated permit_mynetworks rejectunauthdestination checkpolicyservice unix:private/policy permit+
    +smtpdsasl_authenable = yes+
    +smtpdtlsCAfile =+
    +smtpdtls_certfile =+
    +smtpdtls_excludeciphers = SSLv2, aNULL, ADH, eNULL+
    +smtpdtls_keyfile =+
    +smtpdtlsloglevel = 0+
    +smtpduse_pwserver = yes+
    +smtpdusetls = no+
    +unknownlocal_recipient_rejectcode = 550+
    +virtualaliasmaps =+
    +server:~ ianknight$+

    The first one is easy...
    Jan 27 21:20:45 server postfix/postmap70670: warning: /var/amavis/local_domains.db: duplicate entry: "redcedarpoint.com"
    You have redcedarpoint.com set as both the domain name and the hostname of the server. That is not correct:
    mydomain = redcedarpoint.com
    myhostname = redcedarpoint.com
    In this case, myhostname should be the reverse DNS hostname that the recipient mail server would see on outgoing mail - typically this would be something like 'mail.redcedarpoint.com
    You should also fix the mydestination parameter so that it includes your domain name as well:
    mydestination = $myhostname, localhost.$mydomain, localhost, dmcwatering.com, internationalcardio.com
    mydestination identifies the domains this server accepts mail for. In this setup it will accept mail addressed to @mail.redcedarpoint.com (assuming you fix myhostname, as above), @localhost.redcedarpoint.com, @localhost, @dmcwatering.com and @internationalcardio.com
    Nowhere here does @recedarpoint.com appear, so users won't get mail addressed to [email protected]
    It's easiest to just add redcedarpoint.com to the list of domains the server handles mail for.
    how should I setup DNS from my hosting service
    Your subject implies a reverse DNS question, but there's nothing in this post about reverse DNS. Other than that, you should have an MX record for your domain that points to the public IP address of your router.

  • How to setup DNS on RODC

    Hi i've recently setup a RODC for a branch office without DNS server role; however now i need to add the role how should i setup the DNS so it is able to retrieve from a RWDC with AD integrated DNS.
    Thks for any info

    Hello,
    I would agree with Brian.
    Install DNS as a role on the RODC should be enough. Once installed, your AD integrated zones will be replicated to it.
    Just one thing is that the DNS zone will be read-only.
    This
    posting is provided "AS IS" with no warranties or guarantees , and confers no rights. 
    Microsoft Student
    Partner 2010 / 2011
    Microsoft Certified
    Professional
    Microsoft Certified
    Systems Administrator: Security
    Microsoft Certified
    Systems Engineer: Security
    Microsoft Certified
    Technology Specialist: Windows Server 2008 Active Directory, Configuration
    Microsoft Certified
    Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
    Microsoft Certified
    Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
    Microsoft
    Certified Technology Specialist: Windows 7, Configuring
    Microsoft
    Certified Technology Specialist: Designing and Providing Volume Licensing Solutions to Large Organizations
    Microsoft Certified
    IT Professional: Enterprise Administrator
    Microsoft Certified IT Professional: Server Administrator
    Microsoft Certified Trainer

  • How to setup iMessage correctly to avoid double replys

    Hi there.
    I have just installed Mountain Lion on my macbook air. I also have an iPhone.
    I now have connected my account with iMessage on the macbook.
    I am using the same account on my iPhone. So far so good.
    I then start a chat in iMessage from my macbook. As sson as I get a reply from the
    person I am chatting with I receive 2 replys. One in the iMessage center on the macbook
    and at the same time I am receiving the same message on my iPhone.
    That is pretty annoying. Is ther a way how I can get rid of this problem?
    Looking forward to your answers.
    BR
    Gerhard

    I'll describe how it works for me.
    I have two email addresses assigned to each device (except the iPhone 4s as it also has a phone #).  One is device specific and one is group specific.
    Sending to group from any of the devices will cause the sent message to appear on all devices.  If the responding device has 'group' as its caller ID then responses to it from the original sender will also go to all devices.  If the caller ID of the responding device is specific to that device then replies to the responding device from the original sender will go only to that specific device.
    So, if you wish all devices to be able to participate in all conversations then the caller ID of all devices must be set to the group email.  If you wish to use the group address to send to all devices initially but want to continue the conversation with only the responding device then the responding device must have a device specific email as its caller ID.
    IOW all devices with an email address that is 'sent to' will receive the transmission.  A responding device responds only to the caller ID of the sending device.
    This is exactly how I expect it to work and exactly how it works for all of my devices.  In Messages for iMac and iPad one can easily see this as the caller ID of the responding device is displayed.  It isn't so simple on the iPhone for if the caller ID of the responding device is not the same as the address originally sent to then a new conversation is started and one must physically switch to that conversation to continue.

  • How to setup poolman correctly?

    i have problem in setting up poolman correctly while put the poolman.jar, jdbc2_0-stdext.jar, jta.jar,xerces.jar on
    web-inf/lib and poolman.xml;
    but it seemly can't work fine!
    what step do i miss?
    thanks in advice,

    I have trouble too..
    can you tell the error message...

  • How to Setup DNS Name to point to the cloud service

    Hi Team,
    We have couple of Cloud Services deployed in our Azure Subscription. We want to provide custom DNS Name such that our cloud service will be accessible publicly as www.<Our Domain Name>.com instead of <Something>.Cloudapp.net.
    Thanks.
    Regards,
    Subhash Konduru
    Please remember to mark the replies as answers if they help and unmark them if they provide no help.

    Hi,
    You need to create a CNAME entry on your DNS provider of your Domain Name.
    Regards,
    Cordialement,
    Mickaël LOPES
    Blog : http://lopes.im 
      

  • No question, I just wanna say thanks to the person who discovered how to change the correct dns to use FaceTime. The 8.8.8.8. Really work. Genius. Thanks again.

    No question, I just wanna say thanks to the person who discovered how to change the correct dns to use FaceTime. The 8.8.8.8. Really work. Genius. Thanks again.

    solved

  • How to setup a static ip address and DNS on airport extreme using the iOS Airport Utility?

    I am at a location that only has wired ethernet.  The ethernet connection has a specific  Static IP address, subnet, gateway, and DNS setting.  I cannot seem to find how to enter DNS settings using the Apple Utility on an iPad. HELP!!!

    First, I am assuming that you are trying to administer your AirPort base station for a static IP address using the iOS version of the AirPort Utility ... correct?
    If so, then to do so:
    Start the AirPort Utility app on the iPad
    Select your base station.
    Select Edit
    Select Internet Connection
    Select Static
    Enter the appropriate IP address information
    Select Done
    Sorry, it does not appear that direct input for DNS IP addresses is an available option with this version of the iOS AirPort Utility app. Not sure why this was not included.

  • How to setup three SharePoint sites on one server?

    Hello,
    How to setup three SharePoint sites on one server?  I have three sites like:
    http://site1
    http://site2
    http://site3
    And need to have them running up on one server. I recall some changes need to be done to the host file, but not sure.  Can you advise on what to change?
    Thanks,
    Paul
    Paul

    you need to make entries in DNS to get this done.
    check here:http://spshare.blogspot.com/2012/05/how-to-create-host-header-web.html
    nice blog with step by step explanation:
    http://thuansoldier.net/?p=1323
    Please remember to mark your question as answered &Vote helpful,if this solves/helps your problem. ****************************************************************************************** Thanks -WS MCITP(SharePoint 2010, 2013) Blog: http://wscheema.com/blog

  • How to setup more than one repository

    Is there a way to setup more than one repository ?
    I've installed BI EE Plus for Linux and it should be used by two different BI teams starting from next month.
    Since today one BI team develop their own repository (under windows) and give it to me; then I usually copy that rpd file under $ORACLE_BI_HOME/server/Repository directory.
    Next month I will receive two repository files... but I don't know how to show the correct one to the appropriate team or at least let them select their own.
    Moreover I didn't find a post where someone create a script to accomplish this requirement or something like this...
    Could you help me, please ?
    Thanks,
    Marco

    Working with multiple repositories is fairly straight forward.
    See:
    OBIEE+ How do I work with multiple repositories
    The difficulty arises with multiple Presentation Servers, this can be done and there are various blogs on the subject if you google.

  • How to setup a PAC proxy on the playbook ?

    Anyone know how to setup a PAC proxy on the playbook ? Thx

    AGirl71985 wrote:
    Hi
     I have been trying to setup the mobile hotspot on my phone and haven't been able to find any instructions on how to do this. If anyone can tell me how it would be greatly appreciated. Thanks!
    Amanda
    Ha Amanda! First, you'll want to make sure your line has been provisioned for Mobile Hotspot service. You can add the feature to allow you to share up to 2 GB of data for 5 other devices for $20.00 per month. Once that is confirmed, please follow these steps to set up your device's mobile hotspot:
    Settings> Wireless & Networks> Tethering & Portable hotspot> Portable Wi-Fi hotspot settings> check mark next to Portable Wi-Fi hotspot. This will disable all other data access so that the data usage is allocated correctly. When finished using your Xperia Play as a hotspot, remove the check mark from Portable Wi-Fi hotspot. 

  • How to setup a canon ip2600 printer without the cd?

    how to setup a canon ip2600 printer without the cd?
    Solved!
    Go to Solution.

    Hi Santana,
    The drivers for the PIXMA iP2600 can be downloaded from the Canon USA website.  The following link will take you to the initial download page for your PIXMA iP2600:
    PIXMA iP2600 Drivers and Software page
    Once on the initial download page for your model, please do the following:
    1.  Verify that the operating system detected in the "OPERATING SYSTEM" drop-down menu is correct, and if it is not, please click the drop-down menu to select your operating system.
    2.  Next, please click on the red arrow next to the "DRIVERS" section and click the printer driver file.  When you do, another page will appear giving details of the file you are about to download will appear.  
    3.  Please scroll down on the Details page and agree to the terms of the disclaimer message to continue with the download process by clicking on the "I AGREE - BEGIN DOWNLOAD" button.  After clicking the "I AGREE - BEGIN DOWNLOAD" button, follow the instructions to download and install the driver.  The time for the download process may vary depending on the speed of your Internet connection and the size of the file being downloaded. 
    Hope this helps!
    This didn't answer your question or issue? Find more help at Contact Us.
    Did this answer your question? Please click the Accept as Solution button so that others may find the answer as well.

  • How to setup the raw devices  permissions permanantly in 11gr2  on RHEL 5.

    Hi All,
    Succesfully installed 11gr2 RAC and working fine , but in next boot raw devices permissions revert back to root .
    Please advice me to how to setup permissions permanantly as the oracle user.
    Regards
    San
    .

    you find the lib on this page:
    http://www.oracle.com/technetwork/topics/linux/downloads/rhel5-084877.html
    in the AMD64 / Intel em64t Architecture table
    this is the direct link
    http://oss.oracle.com/projects/oracleasm/dist/files/RPMS/rhel5/amd64/2.0.5/2.6.18-194.el5/oracleasm-2.6.18-194.el5xen-2.0.5-1.el5.x86_64.rpm
    hth
    p.s. don't forget to mark question as helpful/correct and close the question.

  • How to setup the clock to the second.

    How to setup the clock to the second. I'm able to setup hours and minutes correctly but not the seconds precisely. Can I synchronize with an atomic clock?

    Set whether iPhone sets the date and time automatically
    Choose General > Date & Time and turn Set Automatically on or off.
    If iPhone is set to update the time automatically, it gets the correct time over the cell network, and updates it for the time zone you're in.
    from: http://support.apple.com/kb/TA38641

Maybe you are looking for

  • "ERROR SAVING RECORD" Message generated...

    Hi Everyone, I have a minor error with an Alert I made. I have an alert linked to both the Pre-Insert and Pre-Update Triggers at the Block level of my form. This alert fires when the Volume entered in the record is >50. It asks "Are you are sure the

  • FSIS host controller service getting stopped frequently on windows 2008 machine

    We have 6 Windows hosts out of which 1 is admin node for FSIS and other 5 have IMS instances running. Of late we observed that FSIS host controller service is getting stopped on many of these windows hosts almost every day and sometimes 5-6 times a d

  • Planning Layout Function

    Hi Guys, In the Manual planning Layout selection, Is it possible to have a range selection as you have in BW User Entry Variable in queries?? Or have a default setting that uses the last used value in the selection field???? K

  • Settinc control hints values in entity object attributes generically

    Hi, how are you? I work for a project , that uses JDeveloper 10.1.3.3 version and I am assigned to solve some problems in the part that is associated with ADF Business Components—Model—of the application. The question is how could I implement generic

  • Problem in supplementary invoice

    Dear Guru's,   I am trying to create a supplementary invoice order type with reference to the standard bill.For that i am creating an order ..in this order i have no value for material...only taxes should be created.   For this i have created manual