Server 10.4, Older Clients, and ACLs over AFP

Similar Messages

• How to set up a mail server with a private DNS and relay over a public mail

  How to set up the mail server that we can send and pick up emails inside and outside?
  Our private network has the DNS name dnsname1.private.
  We have our privat DNS Server and he can forward requests to outside over our router.
  Our public emails are hosted by an internet provider. This dns name is dnsname2.com and dnsname2.org.
  How we have to set up our mail server that we can pick up our emails from our public dnsname2.com?
  And when we write an email how we have to set up it that the dnsname is dansname2.com and not dnsname1.private?

  If you want to move your mailservice to your own (internal) server, start by making sure you can recieve traffic on port TCP 25 (SMTP). Some ISPs blocks this port, especially on "non business" connections.
  Can you send mail from your LAN directly to where your mail is hosted using port 25 TCP or do you have to relay via your ISP?
  You have a static public IP?

• Server slow down with client and server slowdown

  The problem started a couple of weeks ago and it has been hard to nail down. When people are working there are times when the computers will pause for a few seconds(1 to 5) and then continue. It doesn't seem to be any one program or type of computer (G4 or G5). Everybody that is experiencing the problem is logged in via the OS X server with their Home directory on the server. If we create a local user the problem doesn't appear. It seems to point to the OS X server but all indicators show the server is hardly doing anything thing at all. Very low CPU utilization, disk usage, network traffic, throughput, and the system memory never maxs out.
  We switched to a different X Server, same problem.Everything is running 10.3.9 client and the server version is 10.3.9

  The problem started a couple of weeks ago and it has been hard to nail down. When people are working there are times when the computers will pause for a few seconds(1 to 5) and then continue. It doesn't seem to be any one program or type of computer (G4 or G5). Everybody that is experiencing the problem is logged in via the OS X server with their Home directory on the server. If we create a local user the problem doesn't appear. It seems to point to the OS X server but all indicators show the server is hardly doing anything thing at all. Very low CPU utilization, disk usage, network traffic, throughput, and the system memory never maxs out.
  We switched to a different X Server, same problem.Everything is running 10.3.9 client and the server version is 10.3.9

• Yosemite Server - login from older clients

  I am lab-testing network login to server 4.0.3 running on a brand new mini. Only using OD, on the mini server, with home folders stored (for now) on the internal HD.
  Login from a brand new Yosemite client seems fine but from older clients on 10.6.6 it is painfully slow - 3 or 4 minutes.
  Is there anything that springs to mind that I have set up wrongly?

  I need to add - that the same 10.6.6 clients log in very quickly to our old 10.6.8 MacPro server

• Windows Server 2012 - Direct Access clients and the Windows 8 firewall

  Hi,
  We're running a simple proof-of-concept for Server 2012 Direct Access, we have a single DA server behind a firewall using NAT. We have a number of client devices setup for DA and running Windows 8.
  Our issue is that we can only get the Windows 8 direct access clients to connect (when outside the corporate network) and work with the windows firewall disabled (public network profile). 
  With the windows firewall disabled everything works exactly as expected. When outside the corporate network the client detects the network state (public network profile), connects via DA and all internal resources can be accessed successfully...fantastic.
  Is there some specific guidance on manually configuring the windows 8 firewall for Direct Access ? We've tried the obvious TCP:443 with edge traversal enabled but without success.
  Much of the information we have found relates to UAG rather than Windows 2012 DA.
  Any assistance is appreciated.

  Hi,
  There isn’t any specific configuration on the firewall.
  Just confirm that port 443 can be forwarded to DirectAccess server.
  Of course, make sure you are using IPsec first.
  Check the links:
  STEP 6: Test DirectAccess Client Connectivity from Behind a NAT Device
  http://technet.microsoft.com/en-us/library/hh831524.aspx#TeredoCLIENT1
  DirectAccess for Windows Server 2012 Installation & Configuration Guide
  http://syscomlab.blog.com/2012/09/directaccess-for-windows-server-2012-guide/
  Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Finder + ACLs over AFP Mounted Remote Volume

  Hey Guys!
  My Finder is not able to display ACLs on files coming from an AFP mounted volume. The ACLs are there -- ``ls -lef'' displays them correctly. If there some obvious thing here that I'm missing?
  regards,
  P

  Yes, sort of. Whenever you're doing an "opportunistic mount" where the server and client are not joined to the same directory domain, permissions masking will take place. When masking is in effect, it maps access from the currently logged-in user (session owner) on the client to the server share point based on the name and password entered after choosing Go > Connect to Server.
  When dealing with masked permissions, this will be the case:
  * On the client-side, the Finder Info windows may or may not correctly show all ACLs and POSIX permissions of items on the share point. They may simply display effective access - e.g. "you can only read" - without further detail. This depends on the protocol. Typically AFP share points will show correct server-side ACLs and POSIX permissions.
  * On the client-side, listing (ls) the contents of the share point via Terminal will indicate that the session owner has full control and is the "POSIX owner" with others' access at zero (0700). These are the masked permissions, not the real ones.
  * On the server, permissions listed via ls in Terminal or Server Admin's File Sharing section will be the correct ones.
  --Gerrit

• XML over HTTP between client and server

  We are trying to pass XML between a client and servlet over HTTP.
            We used the code from the StockClient/StockServlet examples as a
            starting point but cannot get it to work. Basically we
            have a simple command line java client that is trying to access
            a VERY simple servlet. When the client tries to write data into
            the output stream associated with the connection I get:
            "Connection rejected: 'Login timed out after: '15000' ms....."
            I have read several postings that instruct me to raise the
            timeout limit, but as you can see, I surely don't need 15 seconds
            to write this data out! Is there something special I need to do?
            Does this have anything to do with known issue #10065
            (http://www.weblogic.com/docs51/release_notes/rn_knownprob51.html)
            I have followed all of the instructions in the example code
            (http://www.weblogic.com/docs51/classdocs/xml.html)...
            Any assistance is appreciated...
            here is the client code:
            import java.io.*;
            import java.net.*;
            public class TestClient
            public static void main(String aa[])
            URL url = null;
            HttpURLConnection urlc = null;
            PrintWriter pw = null;
            file://Commented lines indicate other things I have tried
            try
            url = new URL("http://localhost:7001/ParserServlet");
            file://urlc = url.openConnection();
            urlc = (HttpURLConnection)url.openConnection();
            file://urlc.setRequestProperty("Content-Type", "text/xml");
            urlc.setDoOutput(true);
            urlc.setDoInput(true);
            file://urlc.connect();
            pw = new PrintWriter(new OutputStreamWriter
            (urlc.getOutputStream()), true);
            pw.println("<?xml version='1.0'?><test>testing123</test>");
            pw.flush();
            file://urlc.disconnect();
            } catch(IOException ex) {
            System.out.println(ex.getMessage());
            Here is the servlet code:
            import javax.servlet.*;
            import javax.servlet.http.*;
            import java.io.*;
            import java.net.*;
            public class TestServlet extends HttpServlet
            public synchronized void init(ServletConfig config) throws
            ServletException
            super.init(config);
            System.out.println("Inside init()");
            public final void doPost(HttpServletRequest request, HttpServletResponse
            response)
            throws ServletException, IOException
            System.out.println("Inside doPost()");
            protected void doGet(HttpServletRequest req,
            HttpServletResponse resp)
            throws ServletException,
            java.io.IOException
            System.out.println("Inside doGet()");
            

            Jon,
            One thing is missed in your client code. When you use HTTP POST to send request,
            you have two ways to tell the Web server when to stop reading from your input and
            to start process your input: the first one is using "Content-Lenght" header property
            to specify how many bytes you want to send to your servlet, the seocnd is use "Transfer-Code:
            Chunked" and is much more complicated. I didn't see you pass "Content-Length" in
            your client code, in which case, the Web server (Weblogic) cannot know the end of
            your request data and could keep waiting for last byte to come out or waiting for
            the socket time out (that is what you get).
            Since you use servlet, not JSP, I would recommend to code in this way (it works fine
            for me, no guranttee for your situation):
            Client code: Use a big temprary string, or StringBuffer, or StringWriter to store
            all the request data (your xml file content) before you send out the request. After
            you finish to form your XML string, calculate the number of bytes (should equal to
            the length of the string) and add the request header as
            urlc.setRequestProperty("Content-Length", bytes_length);
            I will not suggest you using PrintWriter. Think use BufferedOutputStream constructed
            from URLConnection and write the bytes (use String.getBytes()) to the servlet and
            then flush.
            Servlet code: in the doPost() of your servlet, try to find the request data length
            by calling request.getContentLength(), then open the InputStream (think to use BufferedInputStream
            for performance). Read the contents from the InputStream byte by byte and counter
            the number of bytes. Once you get the number of bytes as specified via request Content-Length,
            break your reading loop and start whatever you want.
            Hope it helps.
            "Jon Clark" <[email protected]> wrote:
            >We are trying to pass XML between a client and servlet over HTTP.
            >We used the code from the StockClient/StockServlet examples as a
            >starting point but cannot get it to work. Basically we
            >have a simple command line java client that is trying to access
            >a VERY simple servlet. When the client tries to write data into
            >the output stream associated with the connection I get:
            >"Connection rejected: 'Login timed out after: '15000' ms....."
            >I have read several postings that instruct me to raise the
            >timeout limit, but as you can see, I surely don't need 15 seconds
            >to write this data out! Is there something special I need to do?
            >Does this have anything to do with known issue #10065
            >(http://www.weblogic.com/docs51/release_notes/rn_knownprob51.html)
            >I have followed all of the instructions in the example code
            >(http://www.weblogic.com/docs51/classdocs/xml.html)...
            >
            >Any assistance is appreciated...
            >
            >here is the client code:
            >import java.io.*;
            >import java.net.*;
            >
            >public class TestClient
            >{
            > public static void main(String aa[])
            > {
            > URL url = null;
            > HttpURLConnection urlc = null;
            > PrintWriter pw = null;
            >
            > file://Commented lines indicate other things I have tried
            > try
            > {
            > url = new URL("http://localhost:7001/ParserServlet");
            > file://urlc = url.openConnection();
            > urlc = (HttpURLConnection)url.openConnection();
            > file://urlc.setRequestProperty("Content-Type", "text/xml");
            > urlc.setDoOutput(true);
            > urlc.setDoInput(true);
            > file://urlc.connect();
            > pw = new PrintWriter(new OutputStreamWriter
            > (urlc.getOutputStream()), true);
            > pw.println("<?xml version='1.0'?><test>testing123</test>");
            > pw.flush();
            > file://urlc.disconnect();
            > } catch(IOException ex) {
            > System.out.println(ex.getMessage());
            > }
            > }
            >}
            >
            >
            >
            >Here is the servlet code:
            >
            >import javax.servlet.*;
            >import javax.servlet.http.*;
            >import java.io.*;
            >import java.net.*;
            >
            >public class TestServlet extends HttpServlet
            >{
            > public synchronized void init(ServletConfig config) throws
            >ServletException
            >
            >
            > super.init(config);
            > System.out.println("Inside init()");
            > }
            >
            > public final void doPost(HttpServletRequest request, HttpServletResponse
            >response)
            > throws ServletException, IOException
            > {
            > System.out.println("Inside doPost()");
            > }
            >
            > protected void doGet(HttpServletRequest req,
            > HttpServletResponse resp)
            > throws ServletException,
            > java.io.IOException
            > {
            > System.out.println("Inside doGet()");
            > }
            >}
            >
            >
            >
            >
            

• Older Clients cannot Authenticated to 10.10 Server ( Also SMB issues)

  Hello
  I am having a few issues with Server.app ( running on 10.10.2)
  It appears older clients ( tested but 10.6 and 10.7) cannot log into the servers open directory. They can bind to it but cannot log in. If i log in with a local account they can still access file sharing etc.
  10.10 clients are fine no issues whatsoever with logging in. ( i have not had a chance to test 10.9 and i don't have any 10.8 clients )
  I am guessing its something to do with the way older OSs authenticate with the OD but i am not sure, don't have a huge amount of experience with OD outside of general admin.
  My second issue is with SMB.
  I am using SMB for file shares, everything was working well and then i started to have issues where users get a message saying the fire cannot be read or written error 36.
  The file however would copy over no issue at all.
  if i connect via cifs:// rather than smb:// it works ( this uses the older version of SMB ) but in an ideal world i would prefer if i did not have to use this as i would have to run a script on every client to force it to use cifs://
  AFP works fine however i cannot use AFP for 2 reasons.
  MS office for mac does not agree with it , accessing files over afp with this application causes files to be corrupted and become locked for editing. Apparently you need to have a globally writable folder called .TemporyItems in the root of the share for MS office to work correctly ( good design there microsoft) but this does not appear to work.
  AFP does also not appear to make file inherit the permissions when you copy something into the directory so its no good for a shared folder .
  Is there any way to force yosemite server to use SMB1 so i don't have to edit every single clients settings?
  I would also be happy to use AFP if the 2 issues above can be solved.
  This is so strange our old 10.6 server works just fine with MS office over AFP.

  my 10.6 clients log in to new accounts with home folders on a new Yosemite server but take about 4 minutes...

• Oracle returns redicrect when there is NAT between client and server

  I have Oracle 8i on Linux sitting behind a firewall/NAT. I have two Apache webservers that run both Tomcat and WebLogic webapps, also behind the NAT. One of them is on the same machine as the Oracle server. Those all connect just fine. I recently had to load a JBoss/Tomcat webapp (no Apache) outside the NAT which needs to talk to the Oracle server. It's using a JDBC driver, I believe calling on this class: oracle.jdbc.driver.OracleDriver. The configured URL is "jdbc:oracle:thin:@localhost:1521:qlink". Using ethereal (A GUI frontend to the packet sniffer tcpdump, which understands the TNS protocol) showed me that this is the connection request being made: "(DESCRIPTION=(CONNECT_DATA=(SID=qlink)(CID=(PROGRAM=)(HOST=__jdbc__)(USER=oracle)))
  (ADDRESS_LIST=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=1521))))". I notice it uses SID, where it seems everything else I've analyzed with Ethereal is using SERVICE_NAME. I was first trying to pipe the data through an SSH tunnel. This technique works with all of Oracle's tools that I have tried it with, and with TOAD. I can connect to this Oracle server with the DBA Studio and sqlplus, over an ssh tunnel. But as soon as this JBoss/Tomcat webapp tries, Oracle returns a REDIRECT message. There are two things that strike me as odd: The REDIRECT message returns the hostname of the Oracle server and a nonstandard port; and the JBoss/Tomcat webapp doesn't seem to do anything about it. I has assumed the TNSLSNR forwarded data between 1521 and the appropirate port for requested databse. The port is the same every time, so I made sure that the hostname/port returned was reachable from the client side. But like I said, the client seemed to just ignore it and hang. Getting desparate, I then tried to open up the Oracle ports on the NAT, and use ipchains to restrict what IPs could connect to it, that yielded the same results. I've seen this webapp work with Oracle running on the same machine, both configured identically. (Running Oracle behind the NAT and using SSH tunnels gives the same configuration for JBoss/Tomcat as if I was running Oracle on the same machine)

  I'm pretty uninitiated with Oracle. I don't know how to verify/disprove your guess about the shared server dispatcher, or even what it means. Should I try to pursue the observation that the JDBC client specifies a SID to connect to and everything else specifies a SERVICE_NAME, or is that of little consequence? I'm not sure how to interpret the output from 'lsnrctl serv'. Here's the chunk pertaining to the database in question:
  qlink has 3 service handler(s)
  DISPATCHER established:120 refused:0 current:120 max:254 state:ready
  D000 <machine: sark.unboundtech.com, pid: 15801>
  (ADDRESS=(PROTOCOL=tcp)(HOST=sark.unboundtech.com)(PORT=41714))
  qlink has 3 service handler(s)
  DEDICATED SERVER established:46 refused:0
  LOCAL SERVER
  DISPATCHER established:0 refused:0 current:0 max:254 state:ready
  D001 <machine: sark.unboundtech.com, pid: 15803>
  (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=sark.unboundtech.com)(PORT=41716))(PRESENTATION=oracle.aurora.server.SGiopServer)(SESSION=RAW))
  Presentation: oracle.aurora.server.SGiopServer
  The (ADDRESS=...) is what is returned in the redirect. I created the database with dbassist using the default setup type. I'll have a look at listener.log (the name/location of a log file is actually a question I had but forgot to ask, so thanks), I don't know how to check trace output. The webserver is able to resolve the hostname being returned, and knows how to route to it.
  Localhost is the correct entry. If you've never used SSH tunnels here's a quick rundown. You can tell most SSH clients to listen on an arbitraty port on your machine, and forward data to a remote IP/port from the other side. So from the webserver, I would say to forward localhost:1521 to localhost:1521 on the oracle server. So for sqlplus, for example, I setup tnsnames.ora to route connections to a particular SERVICE_NAME to localhost:1521, which is forwarded through my SSH connection, to localhost:1521 on the Oracle server. This lets gains me two things, all connections look like localhost, making my firewall rules simpler, and I get encryption through SSH (I know Oracle can do encrypted connections, but some clients might not support it, and I don't know how to set it up yet.) I am able to connect to the database over an SSH tunnel using sqlplus, from the webserver (since I ended up installing Oracle on it), so I know the connection is possible.
  After reading that, you might wonder if the hostname:port returned in the redirect were accessible from the web server. They weren't at first, but opening port 1521 and 41714 for sark.unboundtech.com at the NAT, and firewalling requests from IPs other than the webserver, then giving the JDBC config sark.unboundtech.com instead of localhost with an SSH tunnell yielded identical behavior. After recieving the REDIRECT, the JDBC code doesn't seem to do anything except hang, nothing is sent to the location given in the REDIRECT response.

• Connection between SDM client and server is broken

  Dear All,
  First of all this is what I have
  -NW04 SPS 17
  -NWDS Version: 7.0.09 Build id: 200608262203
  -using VPN connection
  -telnet on port 57018 is succesfull
  I can login to SDM server (from NWDS and from SDM GUI) I can see the state of SDM(green light), restart it, can navigate through tabs in GUI, but every time I am trying to deploy an ear i have this error:
  Deployment exception : Filetransfer failed: Error received from server: Connection between SDM client and server is broken
  Inner exception was :
  Filetransfer failed: Error received from server: Connection between SDM client and server is broken
  I have already read a lot of topics,blogs,notes but didn't find the solution.
  Can anybody help me?
  Best Regards

  Having same issue. Nothing helped so far... Using NWDS 7.0 SP18.
  I have turned SDM tracing on and this is what I see on client side after sending first data package:
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0280/17 Client: finished sending string part"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0280/0 Client: receive String part from Server"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl.receiveFromServer(NetComm ..): Entering method
  com.sap.bc.cts.tp.net.NetComm.receive(): Entering method
  com.sap.bc.cts.tp.net.NetComm: debug "Method "receive(char[])" could not read all requested bytes. There are still 12 bytes to read"
  com.sap.bc.cts.tp.net.NetComm: debug "Caught IOException during read of header bytes (-1,          43):Connection reset"
  com.sap.bc.cts.tp.net.NetComm: debug "  throwing IOException(net.id_000001)"
  com.sap.bc.cts.tp.net.NetComm.receive(): Exiting method
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: Exiting method
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0281/1 Client: connection was broken"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: Exiting method
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: debug "20120224140253 0281/0 Client: finshed sendAndReceive"
  com.sap.sdm.is.cs.cmd.client.impl.CmdClientImpl: Exiting method
  My connection on server is still active so I have to restart SDM server to reset and try it again.
  Anyone have idea whats happening?
  Edited by: skyrma on Feb 24, 2012 2:46 PM
  Edited by: skyrma on Feb 24, 2012 2:47 PM
  Edited by: skyrma on Feb 24, 2012 2:47 PM

• I need code example for server act as client and vice versa

  Hi all,
  I want code example for performing both server and clients using RMI. I mean Server will act as client and client will act as server. So a single program will act as both client and server .
  Please give example, it will helpful to complete my project. I am struggling in this stage. Its like peer to peer action.
  Thanks & Regards
  R.Ragupathi

  1. The tutorial shows you how to do cleint/server.
  2. Search on the topic "callback" to see how cleint and server roles can be reversed.

• How to check Integration Server Client and ABAP stack Client?

  How to check Integration Server Client and ABAP stack Client? How to check,,pls tell in detailed steps???
  Points would be awarded.
  Arnab

  hi,
  Must be the server has different clients,one declared as application server ie abap stack client and the other declared as Integration server ie XI. U might be trying to open idx5 in application server client, in which idx5  exists but you cant open the screen even, that can be achieved through we02.
  000 is the default client when  XI server is installed .We can create separate clients on the system through sccl tcode.
  As told we can find the client  on sap logon screen.
  Logon to sxmb_adm and check whether the client is declared as an application system(r/3) or Integration server(xi).Try idx5 in xi not r/3
  Edited by: NagaDurga Nannapaneni on Aug 28, 2008 11:36 AM

• Cisco VPN Client and Border Manager

  Don't know if this is the correct spot, but here goes. We are using BM 3.8sp4 using proxy, and NAT. We have a contractor that needs to access his company network using a Cisco VPN Client Ver 5. They have Enable Transparent Tunneling checked in the client and IPSec over TCP port 1000.
  Is this a filter exception to let it out or something else I need to set up?

  Port 1000, or 10000? (10,000 is something I've seen in the past, and
  is what I used for the example in my BMgr filtering book. See URL
  below).
  You would probably need to open two ports up, in FILTCFG, from private
  to public interfaces. First, IKE-st (UDP 500). Next, make a custom
  stateful one for port 1000 (or whatever), probably UDP.
  The last Cisco IPSec VPN client I used through BMgr needed UDP 500 and
  UDP 4500 opened, just like the Novell IPSec VPN client. So I was able
  to use the definitions supplied by Novell in FILTCFG. In your case,
  you will probably have to add at least one custom exception.
  Filter debug will tell you what is being filtered, if you know how to
  use it. Or get PKTSCAN.NLM from download.novell.com, load it on the
  server, and capture packets. Look at them on the server, or use
  Wireshark, and you will see what protocol/ports are being sent from the
  client IP address.
  Craig Johnson
  Novell Support Connection SysOp
  *** For a current patch list, tips, handy files and books on
  BorderManager, go to http://www.craigjconsulting.com ***

• Help needed with server essentials 2012 R2 client backup failing

  Help please.  I have installed WSE 2012 R2 on a new Lenovo TS140, everything seems to be working fine (I can map drives, browse folders, copy files back and forth to clients, run the server through dashboard from a client,
  run the server through remote desktop from a client, use remotewebaccess etc.  But I can't get ANY of my clients to backup to the server.  The connector finds the server, installs on the client and the launchpad runs and says 'connected to server',
  but when I try to run the backup, it fails after about 30 seconds and says "can't connect to server"...  This is all the same on clients that are Win 7 Home, Win 7 Pro, Win 8.1 pro and win 8.1 home, wired and wireless...  Have spent about
  a week researching, clean reinstalling, examining router config etc... no luck.  Any thoughts or direction for help appreciated.  I'm not using storage spaces, and have run drive scans which all show healthy drives (1 SDD - OS, and separate HDs for
  files and backups...

  Status is 'no backups available', and no indication of anywhere to check to start, configure or set a backup.  Though I do have the "client computer backup tasks" available over in the tasks panel on the right, but that just sets times for backups to
  occur.
  The system is backing itself up nightly, but no clients.
  I have a bunch of things listed on the BPA (probably as I did some tinkering based on other suggestions, and have tried to set up openDNS forwarding etc.  I'm not sure how to undo all that, so if a clean install would help I could do that rather
  easily..)  BPA partial results listed below...
  Warning
  Network Policy Server (NPS) should be configured to use more secure authentication methods.
  Configuration
  Warning
  All domains should have at least two domain controllers for redundancy
  Operation
  Error
  The PDC emulator master ..in this forest should be configured to correctly synchronize time from a valid time source
  Configuration
  Warning
  All OUs in this domain should be protected from accidental deletion
  Configuration
  Error
  DirectAccess: DirectAccess must be configured to accept client connections
  Configuration
  Warning
  RRAS: IPv4 routing should be enabled on the RRAS server for routing protocols like DHCP Relay, RIP and IGMP to run
  Configuration
  Warning
  RRAS: IPv6 routing should be enabled on the RRAS server for routing protocols like DHCP Relay to run
  Configuration
  Warning
  RRAS: The number of ports available for use by SSTP should be greater than 0
  Configuration
  Warning
  RRAS: The number of ports available for use by L2TP should be greater than 0
  Configuration
  Warning
  RRAS: Only one certificate for IKEv2 should have IP security IKE intermediate in its EKU property
  Configuration
  Warning
  RRAS: The subject name of the certificate to be used for IKEv2 or SSTP must match the name of the RRAS server or the IP address of the external interface of the RRAS server
  Configuration
  Warning
  RRAS: Use authentication protocols that are considered more secure than PAP, CHAP, or MS-CHAPv2
  Configuration
  Warning
  The RD Gateway server SSL certificate must be configured with a valid certificate subject name
  Configuration
  Error
  Use SSL when you use Basic authentication
  Security
  Warning
  Short file name creation should be disabled
  Configuration
  Warning
  Srv.sys should be set to start on demand
  Configuration
  Warning
  Client failback should be enabled for the Netlogon and SYSVOL folders on domain controllers
  Configuration
  Warning
  Namespace root referrals should use the Lowest Cost ordering method on the following DFS namespace:
  \\xxx\Shared Folders
  Configuration
  Error
  DNS: The DNS server 208.67.220.220 on Ethernet must resolve names in the primary DNS domain zone
  Configuration
  Error
  DNS: The DNS server 208.67.222.222 on Ethernet must resolve names in the primary DNS domain zone
  Configuration
  Error
  DNS: The DNS server 208.67.220.220 on Ethernet must resolve names in the forest root domain name zone
  Configuration
  Error
  DNS: The DNS server 208.67.222.222 on Ethernet must resolve names in the forest root domain name zone
  Configuration

• Hi, I am using HP11 and iPlanet web server. When trying to upload files over HTTP using FORM ENCTYPE="multipart/form-data" that are bigger than a few Kilobytes i get a 408 error. (client timeout).

  Hi, I am using HP11 and iPlanet web server. When trying to upload files over HTTP using FORM ENCTYPE="multipart/form-data" that are bigger than a few Kilobytes i get a 408 error. (client timeout). It is as if the server has decided that the client has timed out during the file upload. The default setting is 30 seconds for AcceptTimeout in the magnus.conf file. This should be ample to get the file across, even increasing this to 2 minutes just produces the same error after 2 minutes. Any help appreciated. Apologies if this is not the correct forum for this, I couldn't see one for iPlanet and Web, many thanks, Kieran.

  Hi,
  You didnt mention which version of IWS. follow these steps.
  (1)Goto Web Server Administration Server, select the server you want to manage.
  (2)Select Preference >> Perfomance Tuning.
  (3)set HTTP Persistent Connection Timeout to your choice (eg 180 sec for three minutes)
  (4) Apply changes and restart the server.
  *Setting the timeout to a lower value, however, may    prevent the transfer of large files as timeout does not refer to the time that the connection has been idle. For example, if you are using a 2400 baud modem, and the request timeout is set to 180 seconds, then the maximum file size that can be transferred before   the connection is closed is 432000 bits (2400 multiplied by 180)
  Regards
  T.Raghulan
  [email protected]