Should OS X server act as a single router/server instance?

Services like mail, iChat AV and web are meant to be visible to both internal and external users, whereas file, print and others probably are not. Given that I run a typical 5-desktops small company with one server and a DSL internet connection, how should OS X server be set up?
Having a dedicated modem/router gives me better security, but requires me to port-forward all kinds of data towards the server. While some protocols like http work pretty well using the setup, others like IPsec and iChat are more error-prone or usually do not work over NAT.
Using the optional USB ethernet adapter, I could use the server as a single hub between internet and intranet, dual-homed between DSL and internal network. Would that expose services and data in a insecure way, if I had the firewall turned on?
Mac mini server is great, but how is it supposed to work in a scenario like this? What's your opinion? Regards,
Christian

Use a firewall-gateway.  It's easier. 
If you acquire a gateway with a VPN server embedded, then you can avoid the worst of dealing with NAT.
If you search the forums, you'll find me recommending a firewall-gateway pretty regularly, and in the threads where folks have encountered configuration and IP routing issues when trying to use their Mac as an expensive and comparatively awkward IP router.
If you do choose to use your Mac as a gateway-firewall, Server Admin can open ports on all controllers, meaning you can expose protocols to the Internet, and where you might not want to.  And there are cases were a reconfiguration or an "innocent" software installation or reconfiguration can open up an exposure; having humans operating as a matter of course directly on a box providing gateway-firewall services is not without its risks.
Here is why I recommend an external gateway-firewall box.

Similar Messages

  • Server 2012 Direct Access Single NIC cant get it to work

    Hi,
    I am having some real issues with setting up Direct Access with Server 2012 and a Windows 8 client, it simply won’t work at all.
    First of all I should describe my setup:
    I have an internet connection with a static IPv4 address on the external network adapter of the router
    The internal network address (the address of the router which has the internet connection) is 192.168.1.1
    Server1 (windows 2008 R2 Standard) has a static IPv4 address 192.168.1.2 and has some ports forwarded from the router (443, 25, 80) this server is a domain controller, email server, and has the DNS, DHCP and
    certificate services
    Server 2 (Windows 2008 R2 standard) has static IPv4 address 192.168.1.3 it has no ports forwarded from the router as it has no services accessed externally, it is used as a file server and print server, backup
    domain controller and backup DNS.
    Server 3 (Windows 2012) has static IPv4 address 192.168.1.4 and has the Remote Access server role installed along with all the other default features and roles it requires in the setup process.
    These servers have all got an IPv6 address which I assume the server has configured automatically, there has been no deliberate configurations made to disable IPv6
    I have no UAG or proxy server or anything else to route packets to internal servers. Just this router which has the option for port forwarding (I assume that’s NAT isn’t it?) sorry don’t know much about that
    area.
    I go through the setup wizard in remote access to configure direct access, in the external URL I have entered da.mydomain.com and created a host A record in my external domain name providers DNS which points
    the da record to my external IP address. The wizard creates all the GPO’s, scoped correctly, and applied to a Windows 8 client. The operational status shows its all working and I got green ticks. However, when I connect the client to the internal network it
    doesn’t seem to have correctly got the DA settings. I run the following in powershell
    Get-DnsClientNrptPolicy
    Nothing displays – at all
    Get-NCSIPolicyConfiguration
    Description                   
    : NCSI Configuration
    CorporateDNSProbeHostAddress  
    : fdd8:dd4a:ea42:7777::7f00:1
    CorporateDNSProbeHostName     
    : directaccess-corpConnectivityHost.mydomain.local
    CorporateSitePrefixList       
    : {fdd8:dd4a:ea42:1::/64, fdd8:dd4a:ea42:7777::/96, fdd8:dd4a:ea42:1000::1/128,
    fdd8:dd4a:ea42:1000::2/128}
    CorporateWebsiteProbeURL      
    : http://directaccess-WebProbeHost.mydomain.local
    DomainLocationDeterminationURL : https://DirectAccess-NLS.mydomain.local:62000/insideoutside
    Get-DAConnectionStatus
    Get-DAConnectionStatus : Network Connectivity Assistant service is stopped or not responding.
    At line:1 char:1
    + Get-DAConnectionStatus
    + ~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo         
    : NotSpecified: (MSFT_DAConnectionStatus:root/StandardCi...onnectionStatus) [Get-DAConnect
       ionStatus], CimException
    + FullyQualifiedErrorId : Windows System Error 1753,Get-DAConnectionStatus
    I go into services.msc and find that the network connectivity assistant is not started, it wont start either something must trigger it but I have no idea how to get it triggered to start… this might be my only
    source of problem perhaps but on a more network level question:
    If I have such ports as 80, and 443 (which I assume DA uses in some form with a public IPv4 internet address) directed at server 1, how does the DA connection get to server 3 which has the DA role installed?
    I could create another record on the server which also opens port 443 to server as well as for server 1, but then how would the router know which server to pass the DA connection to if the same port is open for two different servers?
    Either way, this first issue is that the client doesn’t seem to have the ability to connect internally correctly yet, so maybe this connectivity service is a good place to start? My understanding is that the
    networks icon in the system tray should show that there is a corporate connection, but it doesn’t. also, the client seems to have the NLS certificate in the computer certificate store, so the cert side of things is working and the GPO side is working.
    Many thanks
    Steve

    ahh i see, so just to enlighten me even further...
    If a company has two web servers that would mean they would need two different public facing IP addresses so they can route to each internal web server. If, like the big companies have, they
    may have many web servers (possibly more than 100) I’m assuming that simply buying more public IP addresses would have a limit, especially since the IPv4 address space is pretty much exhausted. So is this where proxy systems come into play like ISA and Forefront,
    is this what they do?
    I assume if such a product was implemented you could go down to just one or two public IP addresses, point all traffic to the ISA server and that in turn would do all the routing of packets
    to each server behind the NAT/router (probably based on some sort of domain name or sub domain namespace as it’s parameter for forwarding?)
    Secondly, what I have done is installed windows server 2012 and used that as a direct access client (I read on another forum that the windows 8 RP doesn’t have the enterprise bits to make this
    work). I have got much further with the 2012 server acting as a client (installed on laptop, installed desktop experience and wireless LAN), 
    but when I run the following command on my DA client I get the following status
    Get-DAConnectionStatus
    Status:                 
    connectedlocally
    Substatus:          
    none
    This appears to work fine, when im connected to the local network. But then I disconnect and run the command again and I get the following:
    Status:                 
    Error
    Substatus:          
    NameResolutionFailure
    On my router what I did is temporarily disable port 443 going to my original server and instead opened it up pointing to my other server, so 443 traffic should be going to my DA server now, but I don’t understand why its giving the name resolution failure
    status. I have a host A record called “da” with my domain hoster, and entered the full domain namespace in the DA wizard as da.mydomain.com (the Host A record has been up there for more than a week so it’s propagated through the net)
    So, a bit further but stuck again.

  • DirectAccess on Server 2012 R2 with Single NIC behind NAT on IPv4 only Corporate Network Results in "DNS Not Working Properly"

    I hit this problem at a customer site and can re-produce it in a simple lab.  Lab environment: servers:
    1x Server 2012 R2 DC and DNS server - DC1 - 10.0.0.1
    1x Server 2012 R2 DirectAccess (DA) server - DA1 - 10.0.0.100
    Servers are running "Update" (KB2919355) and following DA hotfixes:
    KB2929930
    KB2966087
    I configured DA (via advanced wizard) as follows:
    DA and remote access
    AD group
    directaccess-webprobehost DNA (A) record pointing to 10.0.0.100
    behind an edge device (with a single network adapter)
    SSL certificate from enterprise root CA issued to directaccess.contoso.com
    NLS on remote server using https://nls.corp.contoso.com
    DNS: corp.contoso.com = 10.0.0.1; nls.corp.contoso.com = ""
    DNS suffix search list = corp.contoso.com
    The DNS server validates successfully in the configuration UI.
    With this configuration, I get a static IPv6 address of fd79:7a37:cbd9:3333::1/128 assigned to the NIC
    The operations status is all green apart from DNS which displays the following error:
    "DNS: Not Working Properly"
    Error:
    None of the enterprise DNS servers fd79:7a37:cbd9:7777::a00:1 used by DirectAccess clients for name resolution are responding. This might affect DirectAccess client connectivity to corporate resources.
    Causes:
    Enterprise DNS servers fd79:7a37:cbd9:7777::a00:1 are not responding.
    I can, however ping fd79:7a37:cbd9:7777::a00:1 (which is the DNS64 translation of 10.0.0.1)
    I would like to know what checks are failing as there are no failures in Event Viewer.
    I have come across forums where people have the same issue and fix it by specifying the local IP (in this case 10.0.0.100) as the DNS server, however Richard Hicks has confirmed with me that the DNS server should be set to the DNS server, not the DA server's
    IP.

    Thanks for the post Matt,
    ISATAP has been disabled on my DA server, so the results of a "ROUTE PRINT -6" command yields:
    ===========================================================================
    Interface List
     12...00 15 5d 01 03 64 ......Microsoft Hyper-V Network Adapter
      1...........................Software Loopback Interface 1
     14...00 00 00 00 00 00 00 e0 IPHTTPSInterface
    ===========================================================================
    IPv6 Route Table
    ===========================================================================
    Active Routes:
     If Metric Network Destination                           Gateway
      1    306 ::1/128                                               On-link
     12    261 fd79:7a37:cbd9::/48                         On-link
     14    306 fd79:7a37:cbd9:1000::/64                On-link
     14    306 fd79:7a37:cbd9:1000::/128              On-link
     14    306 fd79:7a37:cbd9:1000::1/128            On-link
     14    306 fd79:7a37:cbd9:1000::2/128            On-link
     14    306 fd79:7a37:cbd9:1000:814c:28be:46b5:52c1/128     On-link
     12    261 fd79:7a37:cbd9:3333::1/128            On-link
     12    261 fd79:7a37:cbd9:7777::/96                On-link
     12    261 fe80::/64                                           On-link
     14    306 fe80::/64                                           On-link
     12    261 fe80::20c0:e848:d304:9f01/128       On-link
     14    306 fe80::814c:28be:46b5:52c1/128      On-link
      1    306 ff00::/8                                               On-link
     12    261 ff00::/8                                              On-link
     14    306 ff00::/8                                             On-link
    ===========================================================================
    Persistent Routes:
     If Metric Network Destination                            Gateway
      0 4294967295 fd79:7a37:cbd9:1000::/64       On-link
      0 4294967295 fd79:7a37:cbd9::/48                On-link
      0 4294967295 fd79:7a37:cbd9:7777::/96       On-link
    ===========================================================================

  • Using a single Content server for DMS and also for Archive link documents

    Hi,
    We have Planned for a single content server for managing the documents in DMS, parallelly as DMS Standard SAP objects are not available for all SAP transactions, i have proposed for making use of SAP Archivelink funtionality to maintain the documentations where Std SAP DMS does not provide a Solution.
    so here the question is
    can a single content server be used as a content repository for Both DMS and archivelink,
    can any one having done this pls state if it is possible to create different or Many Content repositories for DMS, Archive link in the same server,
    is this a virtual creation or can we assign each repository a specific storage space which it should not exceed.
    Thanks and regards
    Sathish

    Hi sathish,
    -- Through the ArchiveLink docuemnt Management interface, an SAP sytem can use various content servers as storage media. similarly, one contnent server can be used by multiple SAP systems.
    -- A Content server always has a single database assigned to it. A database can therefore be used by only one content server.
    -- A databse is split into as many repositories as necessary. The design of the repository is mapped in the SAP system.A repository contains documents.
    Depending on your requirements,(if u have limited documents or with low requirements)  you can use the same content server for both DMS and Archivelink.
    The number of documents stored on the content server is limited only by the size of the database.
    Its better to have an external content server for archiving purpose, if your database size is increasing. Since the archiving systems storage is not dependent on the database.
    U can also refer to the below thread :
    How to Archive SAP DMS Data?
    hope this helps....
    regards
    kavitha

  • I need code example for server act as client and vice versa

    Hi all,
    I want code example for performing both server and clients using RMI. I mean Server will act as client and client will act as server. So a single program will act as both client and server .
    Please give example, it will helpful to complete my project. I am struggling in this stage. Its like peer to peer action.
    Thanks & Regards
    R.Ragupathi

    1. The tutorial shows you how to do cleint/server.
    2. Search on the topic "callback" to see how cleint and server roles can be reversed.

  • Multiple SAP systems - Single Content Server

    In a production landscape with multiple SAP systems and a single Content Server, would it be more efficient to allow each Web AS to access the Content Sever directly or should there be a single dedicated Web AS to access the single Content Server? 
    We do not have any load data; we are trying to find out if there are any heuristics for such a configuration.
    Message was edited by: John Ryan

    You may use the SAP Content server for data archiving. If you use content server, you may not be be able to satisfy the legal requirements as SAP content server cannot support a WORM devise.
    SAP do not recomment using SAP CS for Data archiving as well. SAP CS could be best used as a temporary content stoarge for non legal document images.

  • ADS+Terminal Services on a Single Physical Server running Windows Server 2008 R2

    We have a Dual Processor Server (2 x Intel Xeon E5-2620v2 + 32GB RAM) running on Windows Server 2008 R2. This has ADS configured. We now wish to add a VDI Setup with NComputing Zero-Clients. We have to run Terminal Services with User RDS CAL + User
    CAL for all VDI Clients.
    Please confirm if we can have both the ADS & Terminal Services running on the same physical server ? Are there known issues or crashes due to this ? Or should both these run on two different servers ? Customer does not want to invest in one more server
    & OS. Hence, we have to run both the services on a single physical server. Customer has just upgraded his server to a Dual Processor with 32GB RAM to accommodate both the services.
    Please advice, if we can run both the ADS & TS on the same server. What is the best practice for this Solution ?
    Thanks & Regards,
    VR
    ([email protected])

    Hi,
    After referring your comment I can say that, you can able to use ADS and Terminal service on same physical server with server 2008 R2. But installing a terminal server on an Active Directory domain controller is not recommended. I suggest that it’s not a good
    practice to manage the environment in that way. If possible, then try to run on two different machines for better result and to avoid any problem. Allowing users to run programs on a domain controller could create security risks and performance issues.
    If the Terminal Server role service is installed on a domain controller, the security settings of the domain controller will need to be adjusted to allow user’s remote access to the server. This remote access is controlled by the "Allow log on through Terminal
    Services" user rights assignment, which can be configured by using the Group Policy Management Console (GPMC).
    You can refer below link for more information.
    1.  Installing RD Session Host on a Domain Controller
    2.  Best practices for setting up Remote Desktop Licensing (Terminal Server Licensing) across Active Directory Domains/Forests or Workgroup
    Hope it helps!
    Regards.

  • Accessing many databases with HTML DB from a single Apache Server

    Hello;
    I am planning the install of 10g and HTML DB on a HPUX server with many databases running out of many Oracle Homes 9.2.0, 9.0.1 and 8.1.7. I will be upgrading a number of the existing databases to 10g and want to access them with HTML DB.
    My question is how can I install HTML DB on many databases and use a single Apache Server to access them?

    Where would I find the DADs? a default installation of htmldb puts the modplsql DAD, "pls/htmldb", in a marvel.conf file located in $OHS_HOME/Apache/modplsql/conf/marvel.conf
    What would the URLs look like? not sure what you're asking. if you're asking about how the change in DAD's would affect the URLs you're calling, though, you should consider looking over the OHS (oracle http server) doc some more before making these types of customizations.
    And how would I install the HTML DB in the different databases?
    Would I use the installer or scripts?the only supported way to install htmldb is via the 10g Companion CD. just use that installer to point to your different db's.
    regards,
    raj

  • SOA OSB Single Managed Server Why?

    I am trying to understand why the option exists to run OSB and SOA in the same managed server (same jvm). Can someone answer this question for me please? I inherited a SOA/OSB server and the previous administrator has taken this approach. I have not been able to find any documentation on the subject, it is briefly mentioned in the OSB install guide but with out explanation as to why someone would want to do this http://docs.oracle.com/cd/E23943_01/doc.1111/e15017/configure_osb.htm#BGBDGGBE
    Thanks

    Troubleshooting Interoperability Between OSB and SOA Suite 10g and 11gR1 [ID 1267207.1]
    Should OSB and SOA Suite Run in one single JVM?
    To run OSB and SOA Suite in one single JVM, i.e. one single WebLogic Server instance, is very handsome for scenarios that only have low load and low memory requirements. For these development or test systems, OSB and SOA Suite can be set up to run in one of the following topologies:
    Both OSB and SOA Suite in one single Admin Server (supported in 11.1.1.4 and upwards).
    In a domain with one Admin Server and one single, non-clustered managed server to run OSB and SOA Suite on it (supported in 11.1.1.3 and upwards).
    However, this is only recommended and supported for development or test environments.

  • How to Implement DC and RDS on a single physical server

    Can any one guide me that how to install DC and RDS on a single physical server. It would be highly great full.

    Hi,
    Whilst possible to do it isn't supported and you should have your DC as a dedicated DC and then a separate server(s) for the remote desktop session host.
    Regards,
    Denis Cooper
    MCITP EA - MCT
    Help keep the forums tidy, if this has helped please mark it as an answer
    Blog: http://www.windows-support.co.uk 
    Twitter:   LinkedIn:

  • Server Name VS Outlook Anywhere Proxy Server and the behaviour I should expect when using SAN certificates...

    (I'll upload screen captures if needed once my account gets verified)
    I have a basic (as in freshly installed single exchange server 2010 SP3) Exchange Server installation. I've setup Outlook Anywhere. I've also setup a SAN (SubjectAltName) certificate.
    My setup:
    ex01.eci.XXXX.XX = is the server name and also the CN of my SAN certificate
    mail.eci.XXXX.XX = an A record I've setup to access my exchange server. It is also a subjectAltName in my SAN certificate
    When setting up Outlook, I enter the server name and specify the Outlook Anywhere proxy server in the Outlook Anywhere section. This works fine and I connect to my exchange server using RPC over HTTPS.
    Now, I was under the impression that specifying SANs in the certificate would allow me to enter the SAN alt name (mail.eci.XXXX.XX) in the field reserved for the Server Name, in Outlook..
    But it does not work. The proxy will give me an error each time, like that:
    HTTP    544    RPC_IN_DATA /rpc/rpcproxy.dll?mail.eci.XXXX.XX:6002 HTTP/1.1 , NTLMSSP_NEGOTIATE
    HTTP    635    HTTP/1.1 401 Unauthorized , NTLMSSP_CHALLENGE (text/html)
    HTTP    123    HTTP/1.0 503 RPC Error: 6ba
    My question is: is this the behaviour I should expect? Or should I be able to specify the SAN alt name in the Server Name in Outlook?
    Thanks!

    Hi,
    Firstly, I’d like to explain, the server name tab should be filled with your mailbox server name in the process of configuring Exchange 2010 account.
    And the Outlook Anywhere proxy server is configured at the server side and cannot be randomly defined at the client side. To check it, we can run: get-outlookanywhere |fl externalhostname
    Thus, it’s an expected behavior that we would get error if we randomly enter name in the server name tab when we configure an account. If I misunderstand your meaning, please feel free to let me know.
    Additionally, Autodiscover service can help us automatically complete the configuration of the Outlook account. And how about the result if you use the Autodiscover to automatically configure the account?
    If you have any question, please feel free to let me know.
    Thanks,
    Angela Shi
    TechNet Community Support

  • SSM - Configure Multiple Webserver's with a Single Database Server

    Hi,
    I need to install SSM using the following system landscape: Distributed system using a single database server and two webserver's.
    The system is configured to use the Microsoft Network Load Balancing and that's the reason why exist two webserver's. When the user put the URL, the connection can be done to the webserver 1 or webserver 2 (the Microsoft Network Load Balancing will manage that).
    I was checking the install guide "NW CE 7_1 SP5 SQL Server Install Guide.pdf" but there is no reference to this system landscape. The only "similar" is for High Availability System using Microsoft Cluster Service (MSCS), but that's not what I need.
    I was planning to do a distributed installation and in the database server I will install:
    - the Database Instance of NetWeaver
    - the Database components of SSM (PAS)
    In the Webserver I will install:
    - the SCS Instance of NetWeaver
    - the Primary Application Instance of NetWeaver
    - the Web components of SSM (PIP, etc...)
    For a scenario of a single webserver and a single database server, this work just fine.
    My questions are:
    - how can I configure SSM to work in a scenario of two webserver's and a single database server?
    - Should I install the same components in both WebServer's?
    - Should I use the same instance number or a different one?
    - It is possible to have two netweaver instance sharing the same database?
    Thanks in advance for all the help
    Regards
    Pedro

    Hi Pedro,
    - how can I configure SSM to work in a scenario of two webserver's and a single database server?
    Yes see below. But also make sure SAP will support the configuration you're planning!
    - Should I install the same components in both WebServer's?
    yes.
    - Should I use the same instance number or a different one?
    The same makes configuration eaiser
    - It is possible to have two netweaver instance sharing the same database?
    Not for the SCS but yes for application server (your Java instances)
    The central services, SCS instance, are one per a SAP System. So you cannot install one on each Web Server and operate them simultaneously.
    Given your database is also a single point of failure then I would suggest you install the SCS with it on the database server.
    On each of the Web Servers install an application instance of SAP NW CE.
    Since the instance are on different servers they can share the same instance number.  It is not mandatory but it may make configuration easier. e.g. for the the webservice the port will not change.
    There can only be one Interactive Publisher (PIP) running so this may as well also go on your database server.
    The Pilot Application Server (PAS) there can be multiple of so install one on each Web Server.
    See section 5.2.3 of Server Installation Guide SAP Strategy Management Release 7.0 Support Package 2 and higher for configuring SAP NW CE to point to the one instance on Interactive publisher.
    See section 5.2.7 of Server Installation Guide SAP Strategy Management Release 7.0 Support Package 2 and higher for setting up the Web Service target in Interactive publisher this will need to use the virtual ip(or hostname) of your Network Load Balancer.
    Best of luck.
    Marcel.

  • Multiple Office365 tenants with single sync server filtered by OU possible?

    For what I currently know multiple O365 tenants synced by dirsync is only possible with multiple sync server where each sync server has an active filter for the OU for example. Correct me if I'm wrong.
    Now I'd like to use a single AD / ADFS with multiple OA so that each OA will be it's own O365 tenant. But the central AD FS should be used for SSO.
    The scenario looks a bit like this:
    * Parent company provides www.theparentcompany.com for ADFS federation
    * Subsidiary company A is an OU of the parents AD
    * Subsidiary company A owns www.imasubsidiary.com 
    * Users of company A want to log in by [email protected] but be federated by the ADFS behind theparentcompany.com
    * Subsidiary company B is an OU of the parents AD
    * Subsidiary company B owns www.anotherdomain.com 
    * Users of company B want to log in by [email protected] but be federated by the ADFS behind theparentcompany.com
    Is there a way to do this with a single sync server with the current tools? At least for what I see (connectors in FIM2010) it looks like it could be possible in theory. But I couldn't find any documentation that validates this kind of scenario. 
    Can FIM2010 for dir sync be used sync multiple connectors for multiple tenants or is the configuration/flow special to the DirSync installation so that a new installation is needed?
    Will the upcoming  AAD Connect support this scenario?
    Best regrads,
    Daniel

    I am afraid you may not be able to achieve this using DirSync or AADSync.
    For better assistance on FIM 2010, would suggest to discuss the same on:
    https://social.technet.microsoft.com/Forums/en-US/home?forum=ilm2
    Thank you,
    Arvind

  • How do I host multiple domains on a single Messaging Server?

    How do I host multiple domains on a single Messaging Server?
    <p>
    To host multiple domains on one Messaging Server, use the
    mailAlternateAddress attribute. If you want to host two domains
    (customer1.com and customer2.com) on your server mail1.domain.com,
    make sure that:
    The various domains (in DNS) point to the installed mail server
    (you must have the MX records that
    points mail for customer1.com to mail1.domain.com and
    customer2.com to mail1.domain.com)
    That each person receiving mail at customer1.com and
    customer2.com has an appropriate mailAlternateAddress
    attribute describing the appropriate email address. For
    instance, John Doe can have an email address (i.e. the value
    of the 'mail' attribute for the John Doe LDAP entry) of
    [email protected] and receive his mail on
    [email protected] (the value of the mailAlternateAddress
    attribute)
    With Messaging Server 3.5, mailAlternateAddress can take the
    form of @mail1.domain.com. If jdoe's mailAlternateAddress is
    set to @mail1.domain.com, mail sent to [email protected]
    will be delivered to [email protected]

    jaygatsby1123 wrote:
    So what exactly am I doing with virtual hosts?  There is a place for Aliases...  What would I put in the "Aliases" box?
    Any other host name that you want to resolve to the specified virtual host.  It's quite literally an alias.
    if you want www.example.com and www.example.org to end up at the same web site and you already have a virtual host — Apple refers to virtual hosts as sites — configured for www.example.com in Server.app, then you'd add www.example.org as an alias for the www.example.com virtual host (site).
    Virtual hosts are implemented in a web server using some details of the HTTP or HTTPS protocol, and what the web browser (client) specified.  The client gets handed an IP address or a domain name by the user, and the client then fetches the associated IP address for the target web server from the client's DNS services or local host database, and the client then connects to the IP address and passes over the text string that the user had requested — the IP address or domain name or even some local shortcut set up in the client system — via the HTTP or HTTPS protocol.  The web server receives and processes this arriving text string from the client, and uses it to select which web site to render back to the web client.   One subtle detail lurks here, too: the server's own DNS configuration really isn't involved in the selection of the virtual host.

  • How to configure single web server instance to multiple application servers..

    Hi all,
    we are running single instance of IWS6.0 SP2 on solaris, we want to comfigure this single instance to multiple application servers(JRun). Can any one advise me whether it is possible to do.
    Thanks
    Raj

    Hi Raj,
    "how to configure single web server instance to multiple application servers.."
    It's not possible for setting up multiple applicataion servers for Single iWS instance.
    Thanks,
    Dakshin.

Maybe you are looking for