LD417 + SSL + virtual server question

Similar Messages

• Virtual server questions

  Hi,
  My objective is to create a virtual server for www.anothercompany.com on the same port 80. The instance has by default www.mycompany.com running.
  1] While creating the virtual server, I should enter a URL Host. What is this? Should it be www.anothercompany.com or the host where the web server is running on?
  2] how to configure each virtual server to have its own server.xml, obj.conf, and other configuration files?
  thanks

  I recently did this on a solaris system.
  Here are the steps:
  Get a new IP address for server
  Add the additional IP address to system interface
  cd /etc
  ls /etc/hostname.* (this gives you the type which I will use ## )
  edit /etc/hosts to add new IP and name
  cp /etc/hostname.## /etc/hostname.##:1
  edit /etc/hostname.##:1 to be name in host table
  ifconfig ##:1 plumb
  ifconfig ##:1 information (IP netmask broadcast etc)
  ifconfig ##:1 up
  Modify existing webserver so it no longer uses 0.0.0.0
  admin console - edit listen sockets
  select socket (ls0, ls1, etc)
  modify IP from 0.0.0.0 to IP of original webserver
  apply changes
  Add new webserver specifying new IP address in socket
  Since it has a different IP, you can use port 80 without problems

• SJSWS 7-virtual server question

  I've just created a virtual server "test1" and the default document root is ../docs . Once that's done, i goto test1.xxxxx.edu and i see the Sun Java System Webserver 7 homepage at that address. I wanted to change the document root so that it points to a directory c:\ webprod\webtest . After doing that, when i try to access test1.xxxxx.edu it kept prompting me for a username and password for Sun Java System Webserver. Why is that??
  -peter

  Can you send us relevant ACL files? Can you see default.acl file?
  Can you try giving default user "list" rights and see what happens?
  1. It is possible that there is an ACL for "read" rights which doesn't allow unauthentciated users "read" access.
  2. Your docroot settings are pointing to a different directory than what you think and it doesn't have index.html.
  For more info about directory listings and ACLs refer my blogs page http://blogs.sun.com/meena

• Hyper-V Question -- Running Hyper-V or VMWare on a Windows Virtual Server

  So my research tells me there likely is not a way to do this, but I think someone must have run into it before or there has been a previous need.
  We have recently had two Windows Server 2012 R2 Standard virtual machines created for our use in our data center.  We are using them to run a series of web scanning and monitoring tools.  We want to run these tools within various Windows OS environments
  with different combinations of browsers/applications/etc, making VMs the obvious way to go (preferably multiple VMs per virtual server).  I don't know much about the virtual data center here, but when I try to enable Hyper-V, the system tells me it is
  running and cannot run within itself.  Likewise, if I try to install VMWare, it tells me it is not compatible with Hyper-V.
  This may be akin to asking for Inception, but is there a way around it?  Does anyone know of a way to run a VM inside a virtual server, or does anyone see an alternate solution?  So far the only one I've come up with is to requisition physical
  servers, install Windows Server 2012 on each, and then use a single level of either Hyper-V or VMWare to create the virtual machines we need.  
  Any information is greatly appreciated.

  I think you might be missing something here.
  You have Server Standard installed on the Bare metal.  Then you add the Hyper-V Role.  Then you open the Hyper-V Management Console and you begin creating VMs.
  You do not add the Hyper-V Role within a virtual machine (VM).
  The same process goes for VMware (ESX) - You install ESX on the bare metal, then you open the manager and you create VMs.
  Now, if all you have are two VMs (which your first statement sounds like) you cannot enable Hyper-V in the VMs and then run nested VMs in that VM.  This just does not work today.
  XenServer can do this in a real way, but only with x86 paravirtualized Linux machines.  And ESX can do this with some very specific emulation settings - and at that your eyes probably just glazed over.
  To do this right, you need the physical machines.
  Brian Ehlert
  http://ITProctology.blogspot.com
  Learn. Apply. Repeat.

• Need to create a virtual server and give its access to another admin

  Dear Sir,
  I am a new admin and have 5 Blade server "HP ProLiant BL660c Gen8".
  I access these servers through HP enclosure.
  I have to install Hyper-V on server 1 which consisted of the OS windows server 2012 R2 Datacenter edition.
  I created a plan to create 5 Hyper-V VM's on the physical server and I requested the IT department network Admin that I want these 5 VM's to able to connect to each other.
  The network Admin created a Trunking configuration on the physical server and after this setup he provided me Hyper-v node IP address and 5 more IP addresses for the 5 Hyper-v VM's.
  Now it was left to me to Add the Hyper-v role and create 5 VM's.
  While Adding the Hyper-V role, I was asked in the middle of the setup to add the network adapter for
  connecting to external network.
  I went inside the network connection settings and I see one network adapter "Microsoft Multiplexer"
  which had the IP address of the Hyper-V node which was given  to be me by Network Admin.
  Besides this I found following Network Adapter: (Mgmt,Trunk):(Mgmt A, Trunk A);(Mgmt B, Trunk B) =Total
  6 Network Adapter out of which only "Mgmt" was configured with the IP address of the Hyper-v node given by my Network Admin. Remaining all other Network adapters IPV4 configuration
  was unchecked except "Mgmt" 
  So I selected the "Mgmt" connection while Installing the Hyper-v role
  SO I chose this Network connection for adding the Hyper-V role.
  My question: Did I chose the correct Network Adapter.
  After doing this I created a VM-1 and tried to assign the IP address given by the Network Admin. But the network Admin did not provide me the default gateway so I used the deafult gateway according to the IP address and used the last digit as "1"
  like a general installation.
  Now my question is: 1.How can I use this VM to be used as a Virtual server?
  2. I would like to open this VM through my browser by entering the IP address of this VM-1. How can I do this?
  Because I access my physical server through the IP address. SO in the similar way I want to access this VM-1 through the IP address
  OR is there any alternate way to access this VM-1 separately.
  My Requirement: I need to give VM-1 access to another admin to Install his application on it. SO how to give him to access this VM directly?
  This is my main query.
  Waiting for your reply.
  Thanks & Regards,
  Ahmed

  Jawin, Jacob, etc.. are fine for creating COM clients but COM servers is a totally different story. I suspect you'll either have to write your own JNI or get out your C/C++ compiler.

• Blue screen error after converting physical to virtual server using disk2vhd

  I have used the sysinternals disk2vhd to create the c: drive from a Dell server. I was able to create a virtual server and boot but had licensing issues. After a support call and doing a repair install to change licensing I am now getting a: "a process or
  thread crucial to system operation has unexpectedly exited or been terminated" after the virtual machine boots and I log on. I tried to get the integration services installed but the server wouldn't stay running long enough.
  Any suggestions for resolution would be appreciated.

  Hi,
  Have you tried the suggestion? I want to see if the information provided was helpful. Your feedback is very useful
  for the further research. Please feel free to let me know if you have addition questions.
  Best regards,
  Vincent Hu

• Migrate SharePoint's SQL Server (physical) to another SQL Server (virtual server)

  Infrastructure team is migrating domain\SQLSERVER db to new ‘XYZ’ Location.  Also they are moving these DBs to virtual server. Currently these are physical DB servers.
  I am trying to keep the server names as same ‘SQLSERVER ‘, but IP address may change. Does it have any impact on MOSS environment and what configuration changes need to be done, if needed???
  Note: -  i am using alias  for my share point 2010 server . 
  SERVER INFO
  2 WEB SERVER , 1 APPS SERVER
  NINTEX Workflow Database without Sql "Alias"
  No any Customization only 2 site colleciton with Nintex workflow.

  You can move all content databases to another SQL server, but moving Configuration DB will have impact on the farm. You can make it work using SQL Alias created on SP server using cliconfg.exe utility but some of the services will break on your farm. As
  far as I know It is not recommended to move config db from one sql server to another.
  You can check below link for referrence on moving databases from one sql to another sql:
  http://technet.microsoft.com/en-us/library/cc512725(v=office.12).aspx
  http://blogs.msdn.com/b/shaden/archive/2007/07/05/moving-the-sharepoint-databases-to-a-new-sql-server-instance.aspx
  Please ensure that you mark a question as Answered once you receive a satisfactory response.

• How to join local computer to virtual server domain ?

  Hi everyone,
  I am new to Window Azure cloud computing. I found many articles and tutorials available online but I am kind of lost because I don't what I need to do to achieve my scenario.
  Scenario: I want to migrate my servers to cloud and retire all local servers such as DC and file server. At the same time, I wish to control the network traffic to limit the clients access to Internet resources. I am not sure retiring the
  all local servers is something right to do and how to do.
  What I have done:
  1. Site-to-Site VPN connection with Dell Sonicwall TZ205 to VNet. (I followed the route-based VPN in this document -> https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&ved=0CB0QFjAA&url=https%3A%2F%2Fsupport.software.dell.com%2Fdownload%2Fdownloads%3Fid%3D5343958&ei=ykGhVIK6GISWuASU6oHQBw&usg=AFQjCNGGS6fsuK6IHAWyQgZi5fey4xhfKg&bvm=bv.82001339,d.c2E&cad=rja)
  2. Created a VM in the VNet. (I can ping the VM from computers connected to TZ205)
  3. Installed active directory and configured the domain forest.
  What I need to do:
  1. How to join the local computers to the virtual server domain controller with S2S and P2S VPN. (Some Internet resources mentioned I need to install Connect agent in order to do this)
  Extra questions:
  1. Is it possible to request the clients to provide account credentials before the point-to-site VPN to VNet is established ?
  2. How do I configure the TZ205 VPN router to send all the Internet traffic to the VNet instead of the ISP gateway? The computers connected to TZ205 firewall router public IP address doesn't change to the VNet gateway IP.
  Thanks for your time reading my questions. It will be helpful if you can provide me some useful links or ideas.
  Sincerely,
  Chee-Kian

  Greetings!
  I assume there is connectivity between on-prem device and DC on Azure VM.
  You can set the Internal IP of the DC as DNS on the on-prem device and trying joining it to the existing domain. Please note to use S2S VPN.
  It is not possible to provide user credentials while connecting to vNet via P2S VPN. It's a certificate based authentication (which is so by design).
  With regards to your query to send all internet traffic to vNet instead of ISP gateway. Please refer to Forced Tunneling:
  http://msdn.microsoft.com/en-us/library/azure/dn835140.aspx
  Hope this helps.
  Thank you,
  Arvind

• Best practice steps for virtual server

  Hello,
  I need help in below questions. Please help.
  Q1) What are the best practice steps to create a VM with Hyper-V?
  Q2) What is the best practice for virtual network cluster?
  Q3) What are the domain controllers? and how to upgrade it from 2003 domain to 2012 domain?
  Please help me to answer above questions. I am new to networking server side. Please guide me step by step. Any help is much appreciated.
  Thanks.
  chirag

  Please post your questions in the appropriate forums.
  This forum is for the specific product Virtual Server 2005.
  For Hyper-V related questions, use the Hyper-V forum:
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/home?forum=winserverhyperv
  For server questions please use the server forums:
  http://social.technet.microsoft.com/Forums/windowsserver/en-us/home?category=windowsserver
  Microsoft has a lot of documentation, have you read it yet? Googled?
  Clustering:
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/7173caf4-a5aa-4426-a16b-592a6e6714ec/windows-server-2012-hyperv-cluster-step-by-step?forum=winserverhyperv
  http://www.bing.com/search?q=hyper-v+cluster+2012+r2+step+by+step&src=IE-SearchBox&FORM=IE11SR
  Domain upgrades:
  http://technet.microsoft.com/en-us/library/hh994618.aspx

• Virtual server and client command

  Hi,
  I want to configure firewall load balancing as follows. I have 3 firewalls, FW1, FW2, FW3. I want to create a serverfarm for each FW, i.e. FW1 in SF1, FW2 in SF2, and FW3 in SF3. Then, we'd like to create two Virtual server VS1 and VS2. Each Virtual server has Server Farm SF2 as a backup server farm. I.e. SF1 is the active server farm for VS1, and SF2 is the backup server farm for VS1. We also have SF3 is the active server farm for VS2, and SF2 is the backup server farm for VS3. Note that all connections to VS1 and VS2 will come from the same VLAN (e.g. VLAN X). So the configuration of the virtual server I think should be as follows ;
  vserver VS1
  virtual 0.0.0.0 0.0.0.0 25
  client 192.168.1.0 255.255.255.0
  vserver VS2
  virtual 0.0.0.0 0.0.0.0 25
  client 192.168.2.0 255.255.255.0
  So, the question I have is, will this work if we filter who can access the virtual server using the client commmand ? I.e. clients coming from 192.168.1.0 will be using VS1 and clients coming from 192.168.2.0 will be using VS2.
  Thanks !

  The 'client' command should work as you expect.
  You'll need to add the 'serverfarm' command under each vserver. Ex:
  serverfarm SF1
  real 1.1.1.1
  serverfarm SF2
  real 2.2.2.2
  serverfarm SF3
  real 3.3.3.3
  vserver VS1
  virtual 0.0.0.0 0.0.0.0 tcp 25
  serverfarm SF1 backup SF2
  client 192.168.1.0 255.255.255.0
  vserver VS2
  virtual 0.0.0.0 0.0.0.0 tcp 25
  serverfarm SF3 backup SF2
  client 192.168.2.0 255.255.255.0
  I am assuming that you will be using different IP addresses for each vserver. Is that correct?
  ~Zach

• Real server to access a different Virtual server in same context ??

  Hi all,
  I got a scenario need to clarified before go to production. Below is my traffic explaination
  SETUP
  Context WEB -1st Virtual server (10.10.10.1) - > bind 2 Real Server ( 1.1.1.1 and 1.1.1.2) ->sticky configured
  Context WEB - 2nd Virtual server (20.20.20.1) - > bind 2 Real Server (2.2.2.1 and 2.2.2.2) ->sticky configured
  My question is
  User will HIT 10.10.10.1 and load balance to RS 1.1.1.1 and 1.1.1.2, RS 1.1.1.1 and 1.1.1.2 will need to go destination 20.20.20.1 and ACE load balance to 2.2.2.1 and 2.2.2.2.
  Will RS1.1.1.1 and 1.1.1.2 success HIT 20.20.20.1 and ACE can load balace to 2.2.2.1 and 2.2.2.2 and response to RS1.1.1.1 and 1.1.1.2?
  Any comment is welcome !!!
  Thank you,
  Meng Kiat

  Hi Meng,
  It is possible. You need to apply the Virtual server (20.20.20.1) policy to the server side Vlan interface.
  That way server ( 1.1.1.1 and 1.1.1.2) can hit virtual server (20.20.20.1)
  This should work just fine without any trouble.
  regards,
  Ajay Kumar.

• DPM 2010 as a virtual server

  We're deciding to run DPM 2012 on as a virtual server (running on Windows Server 2012 and as a VMware 5.5 VM)
  My question is:
  When presenting storage to DPM 2012, is it better to use a VFS datastore or a RDM (Raw Device Mapping)?
  I can't seem to find any best-practice articles about this, so I'm asking if anyone has any experience or feedback about this.
  Thanks!
  (P.S. I'm using SATA attached storage devices in my Vsphere 5.5 cluster)

  Hi,
  the Main important Thing is, to present the Storage as a local Disk on the OS.
  As for HyperV, RDM Drives will not allow the VM to Live Migrate, if so in VMware would use the better solution.
  Seidl Michael | http://www.techguy.at |
  twitter.com/techguyat | facebook.com/techguyat

• SBO running on virtual server

  Hi All
  One of our clients is implementing virtual server , currently they are running on a x86 2003 OS machine.
  Here is the question.
  I am virtualizing 3 new servers, one for SAP, one for CRM and one that will be my SQL processing machine. My question goes as follows: our SAP is currently running on 32-bit SQL 2005, would I still need to keep the SQL version as 2005, or would we easily be able to move it to SQL 2008 64-bit (bearing in mind that my virtual SQL machine is Windows Server 2008 64-bit)?
  Regards
  Bongani

  Thanks Gordon
  PLease check this link as well.
  Error connecting to the license server.

• Access a SSL-enabled server

  Hi,
  I'd appreciate it if somebody gives me a response or a hint. I want to send a request to a remote SSL-enable server from my application deployed in Tomcat. Is there any way to do it (like configure Tomcat) other than developing SSL java codes? I know that my question does not make much sense but it is nice to know if there would be some settings that allow 2 servers communicate each other on SSL level. Thank you

  Hi cjmose,
  Thank you for your response.
  I'm not really sure I understand your question. I assume you mean that you have a j2ee app deployed in one container, and the business logic in that app needs to communicate with another container on a separate server via ssl?
  Yes
  In that case I imagine you need to use jsse and use either an https or sslsocket to connect to the other server and do what you need to do...
  I'm developing new codes using jsse1.0.3_04 and HTTPClient (this package claims that it supports https). However, I got an exception HTTPClient.ProtocolNotSuppException when I call
  new HTTPConnection("https", "someserver", -1);Do you know how to fix this problem? Thanks

• Can I use the search engine and run a web application under the same iPlanet 6.0 virtual server?

  I've got an iPlanet 6.0 SP2 virtual server with the search engine enabled, which was tested and working. I then deployed a web application to it (mapped to "/"), and the web application works fine but now the search functionality is completely broken. Browsing to /search results in a directory index being displayed. Is there some trick to getting the two working together? I tried shuffling NameTrans directives around, but can only get either the search or the web app working, not both.

  Ok, I'm going to answer my own question now...
  The issue has been resolved after some additional experimentation on my part. There were two causes for my problem:
  1. The NameTrans directives in obj.conf are in the wrong order when Java and Search are enabled from the administration interface.
  Here's the admin server generated obj.conf I started with initially, when the web application was working, but requests to the URI "/search" returning a 404 error:
  <Object name="default">
  NameTrans fn="NSServletNameTrans" name="servlet"
  NameTrans fn="pfx2dir" from="/search-ui" dir="/usr/local/iWS-6.0/plugins/search/ui" name="es-internal"
  NameTrans fn="pfx2dir" from="/mc-icons" dir="/usr/local/iWS-6.0/ns-icons" name="es-internal"
  NameTrans fn="pfx2dir" from="/manual" dir="/usr/local/iWS-6.0/manual/https" name="es-internal"
  NameTrans fn="es-search-nametrans" from="/search"
  NameTrans fn="NSServletNameTrans" name="servlet"
  NameTrans fn="document-root" root="$docroot"
  </Object>
  Here's my obj.conf now, which works perfectly:
  <Object name="default">
  NameTrans fn="pfx2dir" from="/search-ui" dir="/usr/local/iWS-6.0/plugins/search/ui" name="es-internal"
  NameTrans fn="pfx2dir" from="/mc-icons" dir="/usr/local/iWS-6.0/ns-icons" name="es-internal"
  NameTrans fn="pfx2dir" from="/manual" dir="/usr/local/iWS-6.0/manual/https" name="es-internal"
  NameTrans fn="es-search-nametrans" from="/search"
  NameTrans fn="NSServletNameTrans" name="servlet"
  NameTrans fn="document-root" root="$docroot"
  </Object>
  The "servlet" NameTrans directive needs to go below all others which map a URI to a function or directory (but before "document-root"), or they break. This is consistent with the iPlanet documentation on NameTrans, but the admin server doesn't get it right!
  2. The developer who wrote the web application uploaded a directory named "search" in the root of his application, which caused the server to display a directory index of "/search", instead of executing the search function. I believe this issue is covered in an iPlanet knowledge base article.