LDAP Direct Mode And DNS

Hello.
I was looking for this in the docs and I can�t found something.
If I have a server with IMS 5.2 with LDAP Direct Mode and this is called host.domain.com and I have another machine with another mail system, called for example host2.domain.com, but I have in my DNS server a MX register for host2 with priority 5(high) and a MX register for host with priority 10(low), If I send a message using host.domain.com like my SMTP server to [email protected], IMS first ask to DNS server for MX and prorities and send it to host.domain.com or It looks in their system for the user and send it locally?
I wanna have some users from @domain.com in one machine (another mail system) and another users from @domain.com in the other machine (iMS 5.2).
There is no a user with accounts in two machines (for example user1 is in host and user2 is in host2, user1 never will be in host2).
Thanks.

When a message arrives at the MTA, an ldap query is made to see if:
1. The domain is local.
2. The user is local.
If both are true, the message is delivered locally.
If the domain is local, and the user is found in LDAP, but the user's "mailhost" is external, then the mail is forwarded to the system at "mailhost" for delivery.

Similar Messages

  • Preposition with WAE and Directed Mode

    Hello all,
    is it possible to configure a Prepostion with WAE in Directed Mode?
    We have only Devices with Directed Mode.
    Thanks for your help
    Regards
    Andreas

    Hello Andreas,
    There could be quite a few reasons for this I fear. The easiest would be to open a TAC case to investigate a sysreport taken from the edge and core WAE taken after the preposition should have run. Possibly we also need to get captures ;-).
    If you want to investigate yourself: you should see the edge doing a DNS request for and then opening a connection to the server. This traffic should hit the core WAE. Check if the edge is indeed retrieving the directory and downloading files...
    Best regards, Peter

  • Question regarding NAT and directed-mode

    Hello,
    I have two WAE 574 devices and a CM 274 all running code level 4.3.1.6, The CM is behind a PIX firewall. There is no firewall between the branch and core WAE. The branch device is behind a NAT router. The CM and SSL ASA rea behind a PIX 515 firewall. The branch WAE is running inline mode and the core WAE is using WCCP redirection. Both the CM and SSL ASA are reverse NATted on the PIX firewall. The branch WAE has the primary interface unchecked on the CM and is using the NAT address.
    I am getting asymmetric route issues. This is because for some reason the NAT address of the branch WAE sends the SYN which is responded to but the ACK is coming from the unnatted private address. When I turn off directed mode I can see optimisation start for some sessions but not for the SSL
    ASA.
    Example
    Branch WAE Private 192.68.1.45
    Branch WAE Public 206.99.88.10
    CM private 192.168.20.9
    CM public 240.10.10.20
    PIX log
    an 15 2012 11:50:58: %PIX-6-106015: Deny TCP (no connection) from 192.68.1.45/46871 to 240.10.10.20/443 flags PSH ACK on interfe
    Although the PIX NATs the CM address, the core WAE is still still seeing it's private address.
    Do you have any idea what could be causing this ?
    Best regards
    Stephen
    Jan 15 2012 11:51:12: %PIX-5-106100: access-list DMZ_access_in denied tcp DMZ/192.168.20.9(443) -> outside/206.99.88.10(46871) hit-cnt 1 f]
    Jan 15 2012 11:51:31: %PIX-6-106015: Deny TCP (no connection) from 192.68.1.45/46871 to 240.10.10.20/443 flags PSH ACK on interfe
    Jan 15 2012 11:51:37: %PIX-6-106015: Deny TCP (no connection) from 192.68.1.45/46847 to 240.10.10.20/443 flags PSH ACK on interfe
    Jan 15 2012 11:52:08: %PIX-6-106015: Deny TCP (no connection) from 192.68.1.45/49634 to 240.10.10.20/443 flags PSH ACK on interfe
    Jan 15 2012 11:52:10: %PIX-5-106100: access-list outside_access_in permitted tcp outside/206.99.88.10(23183) -> DMZ/240.10.10.20(443) ]
    Jan 15 2012 11:52:10: %PIX-6-302013: Built inbound TCP connection 1475554768 for outside:206.99.88.10/23183 (206.99.88.10/23183) to DMZ:WAD)
    Jan 15 2012 11:52:10: %PIX-6-106015: Deny TCP (no connection) from 192.68.1.45/23183 to 240.10.10.20/443 flags ACK on interface e

    Hi Stephen,
    To troubleshoot this further, we would need to get a topology diagram of your network, as well as the configurations from all devices, so it would probably be better if you open a TAC service request.
    Regards
    Daniel

  • OD, LDAP and DNS

    I am new to LDAP and I believe I have everything setup correctly on the server (everything under Open Directory in SA says "Running", logs don't show any errors). However, I can not access the LDAP server from a client machine using Directory Access. I suspect that client machines still can not "see" my LDAP server.
    I believe the issue may be with DNS and I am trying to understand the interaction between DNS and OD, etc. First off, I do not have DNS turned on for my Mac OS X Server since my ISP has always hosted our DNS. Is this a problem? Do I need DNS activated on the same server that I am running this LDAP server? I have tried entering the IP and DNS name on the client server using Directory Access and neither worked.

    The requirement is that references using your server's Fully Qualified Domain Name look up to its IP Address and its IP Address looks up to its Fully Qualified Domain Name. If your ISP does that for you, and does it correctly, Merry Christmas!
    All others must set up their own tiny DNS service to do the lookups. If you are behind an NAT firewall, you can Make Up whatever names you like and look them up locally, because they are invisible from the Internet.
    Remember that each workstation must have the address of the DNS available to it. It needs to be configured in the TCP/IP setup or dispensed via DHCP. If you use your own DNS (highly recommended) you must also dispense or configure the next upstream DNS (your ISP's DNS Address).
    "An Open Directory master requires properly configured DNS so it can provide single sign-on Kerberos authentication.
    Make sure DNS service is configured to resolve fully qualified DNS names and provide corresponding reverse lookups.
    DNS must resolve the fully qualified DNS name and provide reverse lookups for the Open Directory master server, all replica servers, and other servers that are members of the Kerberos realm.
    You can use the Lookup pane of Network Utility (in /Applications/Utilities/) to do a DNS lookup of a server's DNS name and a reverse lookup of the server's IP address.
    For instructions on setting up DNS service, browse Network Services Overview."
    -- from Server Admin 10.4 Help: Kerberos is Stopped on an Open Directory Master or Replica
    Message was edited by: Grant Bennet-Alder

  • Content is not Panning while softkeyboard appears in GPU and Direct Mode (Adobe Air SDK 4.0.0.1390)

    Hi,
    My content is not panning while softkeyboard appears in GPU and Direct Mode(I have placed my input textfield at the bottom of the screen) it is working fine with the CPU and AUTO Mode. I am using Air sdk v 4.0.0.1390. I have checked my manifest file also and have added '<softKeyboardBehavior>pan</softKeyboardBehavior>' still it is not panning my content while keyboard appears.
    Has anybody faced this problem earlier?
    (On Android i am getting this problem on iOS it is working fine)

    Could you please open a new bug report on this over at https://bugbase.adobe.com?  When adding the bug, please include some sample code or a sample application so we can quickly test this out internally.  If you'd like to keep this private, feel free to email the attachment to me directly ([email protected]). 
    Once added, please post back with the URL so that others effected can add their comments and votes.
    Thanks,
    Chris

  • LDAP routing and DNS combination

    for outgoing devilvery is it possible to combine both LDAP Routing and DNS?
    IE. to send out abc.com that exist on LDAP, it will be delivered using LDAP Routing and for domain that is not exists on LDAP, use DNS instead.
    TIA

    If you haven't explicitly enabled it, then SMTP Routes will be used to forward on the mail.
    fyi, this is for our outbond delivery (not incoming). This is what I have just tested.
    domain.com is in our LDAP, and I'd like to usedns instead of LDAP.routing. domain.com mx records should be somewhere in the internet.
    LDAP query test results:
    Query: LDAP.routing
    Address: [email protected]
    Action: reroute
    Reroute to recipients: - (host: servers.cbn.net.id)
    In smtproutes:
    domain.com: usedns
    In mail_logs:
    Wed Nov 7 18:57:44 2007 Info: LDAP: Reroute query LDAP.routing MID 429897525 RID 0 address [email protected] to [('[email protected]', 'servers.cbn.net.id')]
    Wed Nov 7 18:57:44 2007 Info: LDAP: Mailhost query LDAP.routing address [email protected] to servers.cbn.net.id
    Wed Nov 7 18:57:44 2007 Info: MID 429897526 ICID 0 RID 0 To:
    Although I have already specified to usedns, the message still delivered using LDAP.routing.

  • Unable to install updated flash player to my mac os.  Ive empty cache, tried downloading it directly safe mode, and still nothing

    unable to install updated flash player to my mac os.  Ive empty cache, tried downloading it directly safe mode, and still nothing  

    Hi Blanca rey
    You Can try Uninstalling Flash Player using - Uninstall Flash Player | Mac OS
    and Use the Offline Flash Player Installer for Mac (Safari and Firefox) from here - Installation problems | Flash Player | Mac
    Hope it helps,
    While you try the above suggestion,  can you also share the Version of Mac on which you are updating Flash Player and how are you doing it?
    Thanks
    Piyush

  • PasswordSync -direct mode normalize Exception

    Hey, I am getting this strange exception while resetting AD user's password.
    Does anyone seen this before?
    Environment Info:
    Sun Identity Management 8.1
    Active Directory 2008 64-bit.
    User's resourceAccountId=CN=Xx Yy,OU=OU ou1,OU=OU ou2,OU=OU ou3,OU=OU ou4,OU ou5,DC=lab,DC=net,DC=il
    http-80-2(0x0162e703) RFC2253Parser#normalize() Catch com.sun.idm.util.ldap.InvalidDnException: Invalid character found in sequence starting at position 0
         at com.waveset.util.WavesetException.checkBreakpoint(WavesetException.java:488)
         at com.waveset.util.WavesetException.<init>(WavesetException.java:109)
         at com.sun.idm.util.ldap.InvalidDnException.<init>(InvalidDnException.java:38)
         at com.sun.idm.util.ldap.DnUtil.parse(DnUtil.java:192)
         at com.sun.idm.util.ldap.DnUtil.normalize(DnUtil.java:103)
         at com.waveset.util.RFC2253Parser.normalize(RFC2253Parser.java:99)
         at com.waveset.util.Util.normalizeString(Util.java:4164)
         at com.waveset.rpc.GenericMessageHandler.compareAccountIds(GenericMessageHandler.java:3407)
         at com.waveset.rpc.GenericMessageHandler.findSourceResource(GenericMessageHandler.java:3385)
         at com.waveset.rpc.GenericMessageHandler.syncUserPassword(GenericMessageHandler.java:2496)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
         at java.lang.reflect.Method.invoke(Unknown Source)
         at com.waveset.rpc.GenericMessageHandler.request(GenericMessageHandler.java:367)
         at com.waveset.rpc.DirectPasswordSync.doPasswordSync(DirectPasswordSync.java:75)
         at com.waveset.rpc.PasswordSyncServlet.doGet(PasswordSyncServlet.java:92)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:617)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
         at com.sun.idm.profiler.instrumentation.RequestTimingFilter.doFilter(RequestTimingFilter.java:76)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
         at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
         at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
         at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:568)
         at org.apache.catalina.valves.RequestDumperValve.invoke(RequestDumperValve.java:151)
         at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
         at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcessor.java:857)
         at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.process(Http11AprProtocol.java:565)
         at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:1509)
         at java.lang.Thread.run(Unknown Source)

    - When passSync send the password back to IDM in direct mode, does IDM send it back to the AD resource? Why or Why not?
    Answer : NO, this is default behavior of pass sync workflow
    - If a load-balancer is in front of 2 gateways, what adverse effects will it have on IDM and AD? Why?
    Answer : Gateways are not involved in Pass Sync Process itself, only if you have resources OTHER than AD, which are being managed via gateway.
    BY the way - gateways can not work in active-active mode, this is not supported architecture. (only failover mode Active - Passive)

  • Please help, iPhone 5 stuck in recovery mode and will not update.

    I tried to update my girlfriend's iPhone 5 (AT&T) from 6.1.2 to 7.0.4 last night and something went wrong so of course I had backed it up so I put the phone into recovery mode and attempted to completely restore it and then restore from back-up (or at least that was my plan) but the problem is that once I got it in recovery mode and started the update it froze mid-update (Not a computer problem, I have a rMBP 2013, 2.3 ghz i7 & 16GB ram) so after about 30 minutes of watching it at the same spot I unplugged it and attempted to start over. Now everytime I attempt to update it it tries to re-download the software and once it gets completely downloaded it says it was corrupted during the download. I have also attempted to download the IPSW manunally and update that way and it now gets partially through the update and throws an error message. I have tried to use tinyumbrella to kick it out of recovery mode and it does not work either. I am out of options, I have no idea what else to do. I aplogize for my ****** grammar and sentence structure I am flustered and haven't taken the time to proofread it.

    FIRST, edit your hosts file (which was corrupted by the jailbreak process) and remove any references to gs.apple.com; delete the whole lines and save the file. If you don't know how to do this you will have to get help, and it shows that jailbreaking was a bigger mistake than you thought.
    Next, connect to a USB port directly on the computer, not a hub and disconnect all USB devices that consume power or bandwidth (like USB drives).
    Put it into DFU mode to restore. With the phone disconnected hold HOME and SLEEP until a black screen appears. Immediately release SLEEP and continue holding HOME. While holding connect to iTunes and continue holding. After a while (perhaps several minutes) iTunes should recognize the phone. When it does release the HOME button and hope for the best.

  • Yoga 2 Pro - Frequent issues after Tablet Mode and Suspend in Windows 8.1

    Hi,
    I bought a Yoga 2 Pro running windows 8.1 in December 2013. The machine runs fine, but from the beginning I experience frequent system issues whenever I have the Yoga in Tablet mode (display turned to the back).
    The issues sometimes arise directly after I resume from tablet mode. More frequent the issues appear once I had the machine in tablet mode and after had it in suspend mode!
    Some of the frequent issues that arise after I resume from tablet mode:
    Power surge at right USB Port, where I have my mouse connected! The connected device cannot be provided with enough power. (Note, the left port still works), or
    WiFi not working any more (No WLAN device detected, WLAN not functional), or
    Bluetooth not working (No Bluetooth device detected, BT not functional)
    All issues reliably disappear with a system restart!
    I have already updated my drivers, scanned the Lenovo and Microsoft forum whether this is known without success and hope this avenue will bring me more luck.
    What makes the bug hard to narrow down is that I do not have a recipe to reproduce the error. Not every time I turn the display in tablet mode the symptoms are equal! But what I can is that the tablet mode is the most common denominator I found so far.
    Any helped/suggestions much appreciated.
    Regards
       Florian

    Yea, great... it seems like these articles and suggestions come up in the forum, and then there is always someone that says "it didn't work but this solved it for me" which ammounts to setting the screen at full brightness all the time.   LENOVO, HOW ABOUT FIXING THE ISSUE!!!  It definitly has something to do with power, in my case _the only_ thing that fixes it is either plugging in a power cord or closing the screen, reopening it and hitthing the power button to turn it back on (both are REALLY annoying if you're trying to get work done).  
    I'm a fairly experienced IT guy, and I used to swear by _IBM_ Thinkpads and related laptops, then when they went to Lenovo a few years ago it seems like the support has gone to hell and the hardware appears nice but is sketchy (this thing should have never shipped with this display problem or the wifi card issues that it shipped with).   Honestly if issues like this don't get resolved Im not likely to order any more, ever.  Not for my self or for my organization, we will stop persueing contracts with you and certifying the hardware for our work (though with the lenovo purchase it was deemed that the hardware wasn't certifyable for certine applications anyway).  Yes, that will cost you a few thousand sales a year, which is  a drop in the bucket for you, but I'm sure I won't be the only one.

  • Scanning from 5520 to iPad in wireless direct mode ?

    I have a Photosmart 5520 printer and a 3G  iPad - without any other computer equipment or WiFi network or
    router in the house. The printing from the iPad to the 5520 in the Wireless direct mode works well.
    My question is if I can scan from the 5520 to the iPad ? Have looked in the HP ePrint app for directions
    or control buttons but can't find any. Is scanning from 5520 to iPad possible ?  Selecting  "scan to computer"
    on the 5520 control panel does not work.
    Looking for any helpful comments
    Thanks
    Johann
    This question was solved.
    View Solution.

    Hello Johan,
    The HP ePrint app is a different app than the one I have mentioned above.
    The HP Printer Control mobile app is a different one which also allow scanning.
    simply open the Apple App Store, search for HP Printer Control and install it.
    Through that app you will also be able to scan.
    Say thanks by clicking the Kudos thumb up in the post.
    If my post resolve your problem please mark it as an Accepted Solution

  • IPod Touch 4th Gen. iOS 5.1.1 - Sleep Mode and Other Questions

    Hello,
    I have an iPod Touch 4th generation with iOS 5.1.1
    1) RE: Sleep Mode - I found this on another thread and it's regarding iOS 4.3.1. 
    Is the same still true for iOS 5.1.1? 
    If so, what is recommended for sleep mode - Airplane mode or Wi-Fi off - or is either one ok?
    Wi-Fi is always ON with the 4th generation model running 4.3.1 when it is sleeping unless you either turn off the Wi-Fi or turn Airplane mode ON.
    2)  I only use my iPod Touch on my home Wi-Fi and do not use any cloud based syncing or iTunes Wi-Fi Sync.  I do all my syncing manually from my MacBook Pro via USB to the iPod Touch.  The way I do things is purchase what I need from my MacBook Pro via iTunes and then manually sync it to the iPod Touch.  But there may be times, in the future, where I would want to purchase directly from the iPod Touch.
    I recently updated my AppleID with my new email address via my MacBook Pro.  But, I noticed that on my iPod Touch under "Settings" "Store" that it still shows my old AppleID.  I have all Automatic Downloads set to OFF.  How do I update the iPod Touch to reflect my new AppleID?
    3) When I'm using Safari and I navigate to several websites, how do I easily get back to my home page (which is set to Yahoo!)?
    Probably a dumb question but I can't seem to figure it out.  I've set Yahoo! to my homepage but I would think there should be or is (and can't find it) a button/icon like on my MacBook Pro Safari to take me directly back to the homepage.
    Thanks in advance for the help!

    - Unless you use bluetooth, airplane mode and wifi off are the same as regards to battery drain. I like use airplane mode sinc that is directly under Settings.
    - Go to Settngs>Store and sign out of existing account and sign in with the updated one
    - I have no idea for the Safari question

  • My IPad is stuck in recovery mode and now ITunes wont recognize it, what do I do? Keeps giving me a long error message.

    My IPad is stuck in recovery mode and now ITunes will not recognize it, it just gives me this long error message. What do I do, I've uninstalled and reinstalled ITunes.

    Check USB connections
    Related errors: 13, 14, 1600, 1601, 1602, 1603, 1604, 1611, 1643-1650, 2000, 2001, 2002, 2005, 2006, 2009, 4000, 4005, 4013, 4014, 4016, “invalid response,” and being prompted to restore again after a restore completes.
    If there’s an issue with the USB port, cable, dock, or hub, or if the device becomes disconnected during restore, try troubleshooting the USB connection, then troubleshooting your security software.
    To narrow down the issue, you can also change up your hardware:
    Use another USB cable.
    Plug your cable into a different USB port on your computer.
    Try a different dock connector (or no dock).
    Add (or remove) a USB hub between your device and computer.
    Connect your computer directly to your Internet source, with no routers, hubs, or switches.
    If you checked your connections and are still seeing the error message, check for hardware issues.
    Check for hardware issues
    Related errors: 1, 3, 10, 11, 12, 13, 14, 16, 20, 21, 23, 26, 27, 28, 29, 34, 35, 36, 37, 40, 1000, 1002, 1004, 1011, 1012, 1014, 1667, or 1669.
    Try to restore your iOS device two more times while connected with a cable, computer, and network you know are good. Also, confirm your security software and settings are allowing communication between your device and update servers. If you still see the error message when you update or restore, contact Apple support.

  • Unable to access gateway and DNS via VPN (L2TP) with Snow Leopard Server

    Summary:
    After rebooting my VPN server, i am able to establish a VPN (L2TP) connection from outside my private network. I am able to connect (ping, SSH, …) the gateway only until the first client disconnects. Then i can perfectly access all the other computers of the private network, but i cannot access the private IP address of the gateway.
    Additionally, during my first VPN connection, my DNS server, which is on the same server, is not working properly with VPN. I can access it with the public IP address of my gateway. I can access it from inside my private network. A port scan indicates me that the port 53 is open, but a dig returns me a timeout.
    Configuration:
    Cluster of 19 Xserve3.1 - Snow Leopard Server 10.6.2
    Private network 192.168.1.0/255.255.255.0 -> domain name: cluster
    -> 1 controller, which act as a gateway for the cluster private network, with the following services activated:
    DHCP, DNS, firewall (allowing all incoming traffic for each groups for test purposes), NAT, VPN, OpenDirectory, web, software update, AFP, NFS and Xgrid controller.
    en0: fixed public IP address -> controller.example.com
    en1: 192.168.1.254 -> controller.cluster
    -> 18 agents with AFP and Xgrid agent activated:
    en1: 192.168.1.x -> nodex.cluster with x between 1 and 18
    VPN (L2TP) server distributes IP addresses between 192.168.1.201 and 192.168.1.210 (-> vpn1.cluster to vpn10.cluster). Client informations contain the private network DNS server informations (192.168.1.254, search domain: cluster).
    _*Detailed problem description:*_
    After rebooting the Xserve, my VPN server works fine except for the DNS. My client receives the correct informations:
    Configure IPv4: Using PPP
    IPv4 address: 192.168.1.201
    Subnet Mask:
    Router: 192.168.1.254
    DNS: 192.168.1.254
    Search domain: cluster
    From my VPN client, i can ping all the Xserve of my cluster (192.168.1.1 to 18 and 192.168.1.254). If i have a look in Server Admin > Settings > Network, i have three interfaces listed: en0, en1 and ppp0 of family IPv4 with address 192.168.1.254 and DNS name controller.cluster.
    The DNS server returns me timeouts when i try to do a dig from my VPN client even if i am able to access it directly from a computer inside or outside my private network.
    After i disconnect, i can see in Server Admin that the IP address of my ppp0 interface has switch to my public IP address.
    Then i can always establish a VPN (L2TP) connection, but the client receives the following informations:
    Configure IPv4: Using PPP
    IPv4 address: 192.168.1.202
    Subnet Mask:
    Router: (Public IP address of my VPN server)
    DNS: 192.168.1.254
    Search domain: cluster
    From my VPN client, i can access all the other computers of my network (192.168.1.1 to 192.168.1.18) but when i ping my gateway (192.168.1.254), it returns me timeouts.
    I have two "lazy" solutions to this problem: 1) Configure VPN and DNS servers on two differents Xserve, 2) Put the public IP address of my gateway as DNS server address, but none of these solutions are acceptable for me…
    Any help is welcome!!!

    I would suggest taking a look at:
    server admin:vpn:settings:client information:network route definitions.
    as I understand your setup it should be something like
    192.168.1.0 255.255.255.0 private.
    at least as a start. I just got done troubleshooting a similar issue but via two subnets:
    http://discussions.apple.com/thread.jspa?threadID=2292827&tstart=0

  • How do i fix my iphone 5 stuck in recovery mode and wont let me restore it just says unknown error 1603 has occured

    how do i fix my iphone 5 stuck in recovery mode and wont let me restore it just says unknown error 1603 has occured

    http://support.apple.com/kb/TS3694#error1603
    Follow the steps listed above for Error 1604. Also, discard the .ipsw file, open iTunes and attempt to download the update again. See the steps under Advanced Steps > Rename, move, or delete the iOS software file (.ipsw) below for file locations. If you do not want to remove the IPSW in the original user, try restoring in a new administrator user. If the issue remains, Eliminate third-party security software conflicts.
    http://support.apple.com/kb/TS3694#error1604
    This error is often related to USB timing. Try changing USB ports, using a different dock connector to USB cable, and other available USB troubleshooting steps (troubleshooting USB connections. If you are using a dock, bypass it and connect directly to the white Apple USB dock connector cable. If the issue persists on a known-good computer, the device may need service.
    If the issue is not resolved by USB isolation troubleshooting, and another computer is not available, try these steps to resolve the issue:
    Connect the device to iTunes, confirm that the device is in Recovery Mode. If it's not in Recovery Mode, put it into Recovery Mode.
    Restore and wait for the error.
    When prompted, click OK.
    Close and reopen iTunes while the device remains connected.
    The device should now be recognized in Recovery Mode again.
    Try to restore again.
    If the steps above do not resolve the issue, try restoring using a known-good USB cable, computer, and network connection.

Maybe you are looking for