Use of changeip

Similar Messages

• Changeip question...

  hi...
  i need to change the subnet of my xserve... i presume i need to do so using the changeip command but i found this post
  http://www.afp548.com/forum/viewtopic.php?forum=18&showtopic=12944&highlight=cha ngeip...
  is that still accurate? if so, how does it work?
  if its not the case, and i need to use changeip, are there any specific ways to do so? ie:
  do i need to unplug the server from the network first?
  do i need to remove its entry from the DNS server first?
  if i'm not changing the host name, do i need to put it in the changeip command?
  once i've run the changeip command, and changed the ip in network settings, do i need to reboot the server?
  how can i check that the change of ip was 100% successful?
  ah i nearly forgot, how does it apply when your xserver has 2 network cards?
  thank you
    Mac OS X (10.4.9)  

  Hi:
  You should be able to do this on a live server with no repercussions as the article in the link suggests. You are not changing the ip address as such, just the sub-net mask.
  Regardless of whether you are using one or both NICs it wont matter either way if all you are doing is changing the sub-net mask on both NICs. However if you are using both and depending what services you are providing it could have repercussions. You have not gone into any detail regarding this. It cant hurt restarting the server.
  You will have to make allowances for sub-net mask changes if you are hosting DHCP Services. Stop the DHCP Service first, make the changes in the Network Control Panel as well as DHCP Service then restart the server, after log-in restart the DHCP Service. DNS Service does not take account of the sub-net mask so this should not be affected.
  As always make sure it is only the sub-net mask you are changing as well as having a fallback position in case it all goes wrong; ie: a full working backup.
  Hope this helps – Tony

• Changeip command? Trying to view or change the DNS name of a computer.

  Hey guys, I did a time machine on computer but it is still remembering the old DNS name.
  I looked it up and it looks like you can use the changeip command to change the DNS name but when i try and run the command it says changeip command not found.
  Any ideas?
  Thanks!

  Hi
  Apple have changed (sic) the changeip command. In 10.6 Server it now does not have the same functionality it used to have in previous versions. Reason being it was not always successful in doing what it was supposed to do. To change the hostname use scutil:
  sudo scutil --set HostName thenameyouwant
  The changeip command does not exist on the client OS.
  Tony

• How does changeip determine the dns hostname?

  Hello,
  i've been trying to setup my 'test' server at home according to the info i find online.
  one of the first parts is setting the hostname. It is recomended that you use something like
  server.myowndomain.com
  when i use sudo changeip -checkhostname i get
  Primary address     = 192.168.xx.xx
  Current HostName    = server.myowndomain.com
  DNS HostName        = myowndomain.com
  To fix the hostname please run changeip for your system with the
  appropriate directory with the following values
     /Applications/Server.app/Contents/ServerRoot/usr/sbin/changeip 192.168.xx.xx 192.168.xx.xx server.myowndomain.com myowndomain.com
  dirserv:success = "success"
  at my external dns control panel there are 2 A records for my domain name
  localhost
  A
  127.0.0.1
  server
  A
  78.xxx.xxx.xxx
  when i ping from a remote location i get results for both myowndomain.com and server.myowndomain.com
  i had my server working when i used myowndomain.com as hostname, but everywhere i read it says you should use something like server.myowndomain.com as a hostname.
  Is there an other tool i can use to check what dns hostname i'm having?
  can someone shed some light on this for me please?
  thanks
  Marco

  If you are setting up your server on your LAN, then you need to support what is called split horizon DNS.  This means that you need to run a public DNS (which you have based on the ("at my external dns control panel there are 2 A records for my domain name") and you must run DNS on your LAN as well.  The reason for this is simple.
  When running your server on a LAN behind a firewall, your server has two identities.  The first identity is its LAN address.  As above, this is something on the 192.168.x.x network.  This is a private address range and can not be used for public routing.  The second identity is that of the public Internet.  As above, this is represented by the 78.x.x.x address that is the public address used by your firewall.
  When users on the LAN reference your server, they will need to reference it by the 192.168.x.x address.  When users externally want to access it, they will need to route to the 78.x.x.x network.  Thus, the need for two DNS entries.
  Now, the DNS entries are commonly the same.  The difference is the number assigned to the record.  For example, server.myowndomain.com will point to 192.168.x.x on your LAN and server.myowndomain.com with point to 78.x.x.x on the WAN.
  Other ways to check DNS would be to use nslookup or dig.  Also, check the server's network preference panel and look at your DNS entries.  The first entry should be a 192.168.x.x address and it should be pointing to a DNS server on your LAN.  This could be you server or it could be another device that is already running DNS.
  DNS is considered the foundation service for OS X Server.  However, it all depends on the services that you are running.  For Open Directory, Profile Manager, and others, DNS is critical.  Failure to implement it properly will give you nothing but headaches and likely cause future service deployment issues.  However, if you are just hosting a bunch of web sites, then DNS is not as critical, especially if the server is deployed on a LAN with no clients.
  As a note, if you were running your server with a public address, you could use BIND views.  However, this is not advisable for security reasons.
  R-
  Apple Consultants Network
  Apple Professional Services
  Author "Mavericks Server – Foundation Services" :: Exclusively available in Apple's iBooks Store

• Changeip hostname to name.local rendered server inaccessible most of the time

  I followed the instructions here:
  http://maymay.net/blog/2007/09/19/changing-the-hostname-on-mac-os-x-server/
  According to Apple, I also have to change the hostname somewhere else.
  http://support.apple.com/kb/TA24015
  "Before running changeip, be sure you have updated the server's hostname in DNS to match the hostname provided to changeip; otherwise errors will be logged in system.log, and services may not function properly".
  I am not if you have followed my plight before currently running DNS so I changed it as described in the blog post above to be the bonjour name. Sometimes I can access it at [email protected] On some computers 100% of the time, and on some computers not at all. This may very well have to do with whether or not they are on the same subnet.
  What I'm wondering is did I use the changeip command correctly, or should the unix name be separate from the bonjour name? When I first set it up, it seemed to function once I enabled DHCP. I was trying to solve a daylite problem originally. c'est la vie.
  I am primarily trying to use it as a local file server/daylite server. Daylite mostly functions, while the file server does not. I hope this isn't extraneous information. Probably I need to access it via IP?
  I'll post the original Daylite KB article if that would be useful to you.
  --Sam

  You can use both Bonjour (multicast DNS) and traditional DNS (unicast DNS) together.  Your clients can use your own DNS server to access LAN-local services, and Bonjour where that's appropriate (eg: client to client, server to client, etc).
  To do the internal and external demarcation, register two domain names.  I usually use different TLDs on the same domain, and registering and holding a few extra of these domains means you won't have "fun" later, as the DNS namespace continues to fill up.
  You can then use the external domain name for hosted mail services and stuff that's accessible outside your LAN, and that'll be the domain name that's listed in the hosting service's or your ISP's public-facing DNS.
  Your internal network uses your own DNS server, and your DNS server then provides translations for your static-addressed devices on your network (eg: network printers, your external gateway-router-firewall device, any NAS devices, your Mac OS X Server box, etc), are referenced in your local DNS using your internal domain name.  Your internal domain name and your local host translations are all used within your private DNS server configuration, and the translations are not accessible outside your LAN; you need to be connected to your LAN directly, or via VPN.
  Using the two domain names means you don't have to manage the same domain name for both internal and external sites, and the external DNS services.  You're managing two separate and non-overlapping domains this way, rather than one domain name that has two seperate and authoritative servers active.
  There's a whole lot more detail in that DNS article you're probably reading by now, too.

• OD-Clientusers need long time to login

  Hi there,
  I hope, I can get some help here...
  Running an OD-Master (10.5.8) with nor replikas, I have the problem, that sometimes the User-Login needs some minutes for successfull login.
  What I can do to solve the problem for the moment is to remove and reconnect the clients to the server. But this doesn't solve the problem permanent.
  The DNS is running fine and does not make trouble.
  In serveradmin in the replik-tree window I recognized, that there are three IPs listet (10.0.11.6 (the correct OD-Master), 10.0.11.5 (just LOM of the server) and 10.0.11.7 (another xserve, which does only serve DHCP, DNS and Softwareupdates).
  So I think, here is the reason for my trouble.
  What do you think?
  $ dscl /LDAPv3/127.0.0.1 read /Config/KerberosClient XMLPlist
  offers following:
  XMLPlist:
  <?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
  <plist version="1.0">
  <dict>
  <key>edu.mit.kerberos</key>
  <dict>
  <key>domain_realm</key>
  <dict>
  <key>.local</key>
  <string>XSERVER.LOCAL</string>
  <key>local</key>
  <string>XSERVER.LOCAL</string>
  </dict>
  <key>libdefaults</key>
  <dict>
  <key>default_realm</key>
  <string>XSERVER.LOCAL</string>
  </dict>
  <key>realms</key>
  <dict>
  <key>XSERVER.LOCAL</key>
  <dict>
  <key>KADM_List</key>
  <array>
  <string>xserver.local</string>
  <string>10.0.11.6</string>
  <string>10.0.11.7</string>
  <string>10.0.11.5</string>
  </array>
  <key>KDC_List</key>
  <array>
  <string>xserver.local</string>
  <string>10.0.11.6</string>
  <string>10.0.11.7</string>
  <string>10.0.11.5</string>
  </array>
  </dict>
  </dict>
  </dict>
  <key>generationID</key>
  <integer>1320874315</integer>
  </dict>
  </plist>
  $ dscl /LDAPv3/127.0.0.1 read /Config/passwordserver PasswordServerList
  offers the same three IPs in the plist.
  Should I edit the plist(s)?
  If yes: How can I do this?
  What else could I do?
  Thank you for your assistance,
  Peter.

  Peter
  You're welcome!
  Running the "changeip" command is not necessarily a guarantee of anything - especially when it comes to LDAP Services. When doing the initial Promotion to OD Master you should have noticed this disparity? At that point you should have stopped and double-checked everything again. The "scutil" command in conjunction with a properly configured DNS Service is particularly useful in getting things back on track quickly and efficiently.
  It's possible this disparity happened because you used the Server Setup Assistant after the initial Server Install? Unfortunately - if you did - that was your first mistake. Never use the Server Setup Assistant to configure anything other than defining the Server's default administrator account details, its network address and its hostname. As for its hostname you have to decide right at the beginning before doing anything else what this is going to be and you have to try and stick to it. Changing your mind afterwards can potentially break things in a major way.
  If there are no existing DNS servers on your private network you will have to configure the DNS Service on the Server itself (as well as getting the Server fully up to date) before doing anything else. If there is an existing DNS Service create the appropriate records there.
  I don't think the advice in the support document will actually help? Although you could try it if you wish. You might get more mileage from using the "changeip" command? This might bring things back on track and 're-align' the Kerberos Realm to the Server's true hostname? However depending on how mature and extensive your LDAP Database is it may make things actually worse. Even if it worked it may not necessarily help with other services you may or may not be using that depend on LDAP Services. Services such as iCal etc may end up not working at all or being problematic afterwards.
  Ultimately you may be looking at Demotion and Re-promotion? with everything that that means. You have to make sure you prepare the ground properly first. Demotion blows everything to do with your LDAP Database away - users, passwords etc but not home folders.
  For your future reference this is not the appropriate forum to post your question. The 10.5 Server Open Directory Forum is here:
  http://discussions.apple.com/forum.jspa?forumID=1239
  The OSX Server Forum as a whole is here:
  http://discussions.apple.com/category.jspa?categoryID=96
  Tony

• My Mac's name is changing time by time...

  Hi,
  I've just upgraded to Yosemite, but all goes wrong, BT, speed down, wallets stopped synronise from iCloud/Drive between mac an ios, so lost  f...ing importand passwords AND my Mac's name is changing time by time, many times a day....
  I set up in zac.local and the name is Zac, 10 minutes later in finder I see Zac (2) and Zac (3) !!!! What the ****!!! Who is 2, 3?
  I checked zac.local isn't changed but there were Zac (2)... repair... then drop a file by airdrop to my macmini and it wrote Zac (2) send.... ???????
  All my macs and IOS what we have in family went crazy after upgrade to Yosemite / IOS 8 (now 8.1)
  I did SMC and PRAM reset, bit better now, but why change mac's name ???? Any idea? How to solve?
  Thanks!

  If you're running Mac OS X client, then launch System Preferences, select Sharing, and fill in the blank.
  If you're running Mac OS X Server variant (and this is one of the Server forums), then changing the name of the server is rather different, and involves using the changeip command and quite possibly a trip through the DNS definitions for the host.

• Cannot view Profile Manager Portal

  I can use some help here.  Clean install of 10.7 Loin + Server app.  Everything went fine.  The server (Mac Mini) is configured as an OD Master with these services running - Address book, iCal, File Sharing, Mail, VPN, Web and Profile Manager.   DNS checks out fine using the changeip commeand -
  The names match.  There is nothing to change.
  dirserv:success = "success"
  When I'm in Profile Manager and I click on "Visit user portal" I get Safari can't connect... I've downloaded and setup Apple's Push SSL's and configured a self signed SSL.  Everything looks like its in their correct place. I confirmed the Mini is online by surfing the www.  When I go into the web server module and click "View Server Web Site" I get the same message.
  All other services seem to be working fine except for Web and Profile Manager.  I'm attaching three screen shots - 1) Safari 2) Console All Messages 3) Web Server Error Log.  Any ideas on what's going on? Any help would be appreciated. 
  Thanks,
  Craig
  Web Server Error Log

  I used this.
  Try this in Terminal.app:
  cd /etc/apache2/sites
  sudo -s # become admin--you will have to enter your password here
  rm 0000_any_443_.conf
  cp 0000_any_80_.conf.default 0000_any_80_.conf
  cp virtual_host_global.conf.default virtual_host_global.conf
  exit # go back to being a normal user
  Then go back to Server.app and restart your services.

• LDAP + DNS + noob=Massive Pain (LONG)

  I am running 10.4.11 as a home server/gateway. There are two NIC's. The first is connected directly to the modem via ethernet, the second goes to a switch for the LAN. When I set up this server I started small with AFP,DHCP, DNS, Firewall, and Web. I pointed my domain to my ip. Set up the DNS, for this example let's call the domain I am hosting homepages.com. I called the server ns1.homepages.com. I used AFP to mount the directory for the apache root and started to drop my html/php in there. Then i started up mySQL installed phpMyAdmin. Things worked. Upgraded to php5. This was frustrating but in the end, all went well. Then I added a second domain in the DNS. I selected the IP of the second NIC for this second domain because I wanted to name the computers here in my home office as i have a couple of part time employees and thought that names would be easier than IP addresses. I called the server server.home.art, with home.art being the domain. Other computers obviously had names like scanner.home.art or filemaker.home.art or entertainment.home.art, you get the idea. Now it has become rather cumbersome to manage the part time folks all on separate machines, all with local users and all with permission issues to deal with. So I started to ask around and I was told that the Open Directory service could help out. So I promoted the server to Master and immediately ran into problems. You can see a thread over at afp548 here:
  http://www.afp548.com/forum/viewtopic.php?showtopic=19082
  I guess my biggest problem here is my internal vs. external domain. When I originally promoted this to Master the Kerbos Realm and Search base were crazy, they were being pulled from the IN.ARPA from my ISP. That didn't work because the client machines couldn't resolve that, they were looking for the internal domain, home.art. It took me quite awhile to figure that out. So after many, many, many promotions/demotions of the Open Directory and many uses of changeip I am still getting errors. Either when I try and promote the server to Master or from clients. The clients range from network users being shook off with no errors to the error that started the above thread, "home directory is on an AFP volume and cannot be mounted."
  I was finally able to get my hostnames to agree with the external name, the ns1.homepages.com but then I have massive problems with the clients on the LAN connecting to the server. I REALLY want to use the Kerberos Realm: HOME.ART but it really doesn't like that. When I promote it that way it hangs when, gives me errors both in the GUI and in the logs. If I use the NS1.HOMEPAGES.COM, everything starts smoothly but then the clients have problems.
  Is there anyway to get the DNS for the internal to the Keberos Realm instead of the external? I have tried to demote the server to stand alone, save and restart. Then use "sudo changeip - myip myip ns1.homepages.com server.home.art". And then restart the machine. Premote it Master but the Keberos Realm still shows as NS1.HOMEPAGES.COM. The seach base changes to dc=server, dc=home, dc=art, But when I input a Password and "Create" the master I get an "service encountered an error" and "settings is not available, this is a one time alert" and then multiple errors in the logs, namely slapconfig:
  Creating Kerberos directory
  Creating KDC Config File
  Creating Admin ACL File
  Creating Kerberos Master Key
  Creating Kerberos Database
  Creating Kerberos Admin user
  WARNING: no policy specified for [email protected]; defaulting to no policy
  Adding kerberos auth authority to admin user
  Finally, when I demote the server, changeip the name back to the ns1 name and promote the server back AND still can't login into accounts I get errors like this in kadmin:
  Jan 13 20:36:48 ns1.homepages.com kadmin.local[1575](info): No dictionary file specified, continuing without one.
  This error hits the log in three every 4 minutes.
  Or in LDAP Log I see errors like this:
  Jan 13 20:32:23 ns1 slapd[580]: Entry (uid=hollbo,cn=users,dc=ns1,dc=homepages,dc=com): object class 'posixAccount' requires attribute 'homeDirectory'\n
  Jan 13 20:32:23 ns1 slapd[580]: entry failed schema check: object class 'posixAccount' requires attribute 'homeDirectory'\n
  Jan 13 20:36:50 ns1 slapd[580]: SASL [conn=112] Failure: no user in database\n
  Jan 13 20:37:01 ns1 slapd[580]: SASL [conn=126] Failure: no user in database\n
  Jan 13 20:39:24 ns1 slapd[580]: SASL [conn=139] Failure: no user in database\n
  Jan 13 20:41:14 ns1 slapd[580]: SASL [conn=160] Failure: no user in database\n
  Jan 13 20:42:46 ns1 slapd[580]: SASL [conn=172] Failure: no user in database\n
  Jan 13 21:11:38 ns1 slapd[580]: slapd shutdown: waiting for 0 threads to terminate\n
  Jan 13 21:11:38 ns1 slapd[580]: bdb(dc=ns1,dc=homepages,dc=com): Locker still has locks\n
  Jan 13 21:11:38 ns1 slapd[580]: bdblocker_idfree: 16 err Invalid argument(22)\n
  Jan 13 21:11:38 ns1 slapd[580]: bdb(dc=ns1,dc=homepages,dc=com): apple-category.bdb: unable to flush: No such file or directory\n
  I'm really confused and have recieved so many errors that I am beginning to wonder if I have fiddled so much that I have created serious problems with Kerberos. I don't know whether that is possible or not but I could really use some advice on this.
  thanks

  Ok Let me try this again. (My butterfingers have caused more problems with my server configuration than I can tell you).
  *The nightmare that can be Open Directory:*
  It is often best to just start over with a clean install of the server software when your OD keeps failing as you describe. This is no fun, and is time consuming, but it is more likely to give you success. (Hopefully you are paid by the hour and your boss is supportive). If you choose this route, make sure you take the following steps. During the "setup assistant" process, make the server a stand-alone server at first and *do not turn on any other services*.
  Once your server is up and running, set up your DNS configuration. DNS *absolutely must be configured correctly and queries for your OD by domain name should resolve to the machine.* If DNS isn't working, OD won't work. And you *cannot use the bonjour zeroconf/mDNS* with OD.
  The DNS zones must
  *allow recursion*
  *should not allow zone transfers*.
  Your DNS servers field in the network configuration system preference pane should point to the internal LAN DNS server IP address (If you are using DNS on the same machine as your OD, then point it to that machine's private IP address).
  Start DNS
  Restart the computer.
  With OS X 10.4 and higher, setting up your zones is much easier and less prone to error than earlier versions, but verification is important.
  Once you are rebooted, there are a number of tools you can use to test the DNS configuration.
  Check your zone files by opening terminal and typing (in your case) *sudo named-checkzone art /var/named/art.zone* or *sudo named-checkzone home.art /var/named/home.art.zone* . As you can see, the zone file is named whatever you called your zone name with the ".zone" on the end. You next need to verify that the configuration file is correct for dns. Do this by typing *sudo named-checkconf /etc/named.conf*
  Use Network Utility to perform a lookup on your server's domain name and a reverse lookup by typing in your server's IP address. If both come back without errors and look similar to a lookup of a public nameserver that you know is functional.
  Do a search here or on the web in general regarding the errors you may receive if any from these commands. Mac OS X server 10.4 uses BIND9, so the number of sites with tutorials and information about errors and configuration issues are vast.
  It is valuable to know that the location of the zone files and configuration files vary somewhat depending on the version of Linux/Unix. For instance, Debian installs put the entire batch of files in /etc/bind and separates the named.conf file from the local configuration (named.conf.local) and options named.conf.options and splits up the zone files for the localhost into groupings based on IP address octets) while Mac OS X puts the configuration files in /etc/named.conf, /etc/rndc.key, and puts the zone files in /var/named/ Regardless, the content of these files completely compatible.)
  Then you can convert the server to an open directory master. If the dialog shows the correct info for your server (DC=HOME,DC=ART) you should be good to go.
  To reiterate: if DNS is configured correctly, OD should also work properly, especially if you start with a virgin server.
  *Throwing Caution to the Wind*
  Reinstalling everything from scratch is going to result in the most durable solution. With that in mind, why not take some time to learn a bit about how the system is laid out by really mucking it up. If you are methodical enough, you may actually solve your problem in the process.
  OD stores files in certain locations in the /private/var/db/openldap and /private/etc/openldap folders. In /private/etc/openldap there are loose files in the root and a folder called schemas. The latter folder should remain unchanged from first install. It just contains the descriptors for various configurations. The files "ldap.conf and ldap.conf.default" should be relatively untouched. The slapd.conf and slapd-related files are what contain the info you need. Specifically the slapd_macosxserver.conf file. This is the only file that should contain information specific to your Open Directory configuration.
  The OD database is stored in /var/db/openldap
  Your kerberos information is stored in a number of files including /etc/krb5.keytab and /var/krb5kdc. Also information is stored in the kerberos.mit files in your /Library/Preferences folder.
  I won't tell you what to do with these files. But if you demote your server to standalone, reboot in single user mode (hold the command-s at startup, and follow the instructions to /sbin/fsck -fy and /sbin/mount -rw / at the command prompt) and move (mv) any of the files to backup folders ore rename folders so the software does not find them (except /etc/openldap/ldap.conf, ldap.conf.default, and schemas). You use the mv command to do this. mv allows you to move and rename files. It does not create new folders, so you need to do that ahead of time using mkdir if that is your plan of attack. The format of the command is fairly straightforward: if you wanted to rename the folder /var/db/openldap to a backup name you would type *mv /var/db/openldap /var/db/openldap.backup* . To move all the files within a given folder without moving the enclosing folder itself (say /tmp/501) to a new one (say /Users/administrator/Desktop/tmpBackup), you would type *mkdir /Users/administrator/Desktop/tmpBackup; mv /tmp/501/* /Users/administrator/Desktop/tmpBackup* The semi-colon tells the shell that you are starting a new command.
  Beyond this, you will have to just experiment. If anything, the half-hour you spend mucking up your system will be an invaluable learning experience even if you end up having to reinstall the OS and Server software from scratch).
  I hope this is helpful for you.

• User account passwords no longer working

  I recently erased and did clean installs on all of our client macs and changed the server's IP address. The new address is entered in Directory Access on all of the clients. The log-in screen appears as the server software has directed it to, with a list of users. All the users entered in the directory show up. But when a user attempts to log in, they get the login screen shake--their password is refused. The computers are authorized to use all programs, so I know there isn't a program they need that they aren't allowed to use.
  What's going on here? Do I need to reset everyone's password or is something else going on?
  Last of the G5 iMacs   Mac OS X (10.4.5)  

  Did you use the changeip tool to change the IP of your OD Master?
  The AuthAuthority in the user record contains the IP address for the password server, are these entries correct?
  Hope this gets you started
  - Leland

• Steps to upgrade and move server and home folders to new box

  Hi All,
  Can anyone outline the steps I should take to move my 1200 users from a G4 PowerMac Server 10.4.11 to an Intel Mac 10.5.6 and move home folders to a new drive on the new box? Can it be as simple as using the migration tool and connecting up the firewire cable? And what about the fact that the IP will need to be the same?
  Many thanks for any hints,
  ...Tom

  Unfortunately, it is not as simple as using the Migration Assistant.
  Please refer to the following guide from Apple:
  http://images.apple.com/server/macosx/docs/Upgradingand_Migrating_v10.5_2ndEd.pdf
  You are migrating from 10.4 to 10.5, so read that section carefully. There are still quirks in the 2nd edition of this guide, where it tells you to do extra stuff, but it won't hurt.
  If you have another IP address available, use that in combination with a temporary hostname until everything is setup. Afterwards, turn down the old server and use the changeip command on the new server.
  Schedule your migration to a long window of opportunity when the least amount of people are going to need it - like Friday evening (then take Monday off).

• Mail Queue Filling Up

  Came into the office this morning and everyone is complaining they didn't get any email over the weekend. I log into SA to notice over 300 emails stuck in the queue. I found a couple threads regarding this and this one particularly is almost my exact situation:
  http://discussions.apple.com/thread.jspa?messageID=1891076&
  With the exception of upgrading the OS. I did actually have to add a virtual IP address to the same NIC that has the IP for our email. I did this because I was having SSL issues:
  http://discussions.apple.com/thread.jspa?threadID=612479&tstart=0
  Since I wasn't adding a new IP and not so much changing an IP, I didn't use the "changeip" command. Following some of the instructions from the above mentioned thread, I ran "sudo postsuper -r ALL" and this didn't seem to help at all. I then issued a "/sbin/reboot" to restart the email server and now it is in the process of sending all the email that are in the queue. Send and receive email is working properly.
  So why the post since I have solved my own problem?
  Because it makes me nervous that after adding an additional real-world IP to the extra NIC installed on the server, that it has been behaving this.
  So... any thoughts or suggestions on how to prevent this in the future or how to fix this? Thanks.

  Ahhh! Yes, I did create an actual user for postmaster
  and am using it so I could have an additional email
  account in Mail.app to monitor email that was
  improperly addressed. Usually I find about 1-2
  emails a week where someone improperly mis-spelled
  someones address and therefore I send it on to the
  right place.
  Should I delete the "postmaster" account in WGM? But
  then how would I be able to check it's email?
  Have a look in /etc/postfix/alias. The alias name is on the left (postmaster) and the name of the mail account used for it is on the right. Replace with your own short name or another (I usually set up a separate mailadmin user). But I don't really think that is causing your problem - its the actual receiving undeliverable mail which is generating the bounces back out.
  Also in /etc/postfix/main.cf what's the difference
  between "myhostname" and "mydomain". I have them
  both configured the same with "mail.domain.com".
  Should one be "domain.com" and the other
  "mail.domain.com"?
  myhostname is normally your hostname ( eg mail.domain.com) - what you want your server to use in its 'helo' command. Ideally should be the same as your MX record (and PTR record for your IP). Ideally they should all match but sometimes difficult.
  mydomain - eg domain.com
  Note that you will have to put the domain into the Local Hosts Alias pane (if not already there) if you previously only had it as your myhostname.
  -david

• How do I get screen sharing to work again

  I have a mac mini server running OSX Lion 10.7.4  Until powring this down over the weekend, it had worked beautifully.  I coould connect, access shared files, screen share (as I am running in head less) as well as access it via Server Admin from a remote computer.
  After restarting, I can still share files, but am unable to access the sceen share or administer remotely.  The odd thing is that when I connect it to my TV I can then also access it with screen share from another MacBook Pro as well as use server admin for remote admin.  As soon as I run it headless again, I cannot access it via screen share.
  I have noticed that the screen share finction has changed from before, so am wondering if this has anything to do with it.
  I have not chnaged any settings on it.  Firewall is the same as before, filesharing and screen sharing is enabled and I am trying to access it as a registered user.
  Any help greatly appreciated.
  Thanks

  graccoat, I've run the chengeip thing now and it has reported the following:
  primary address = 192.168.0.14
  current hostname = applepip.local
  The DNS hostname is not available, please repair DNS and rerun this tool.
  dirserv:success = "success"
  oddly enough, now that it's connected to the TV again I can access with screen share.
  The reasosn the IP address is different to what I gave you earlier is that It's conected to my router wirelessly now, but usually connects through ethernet.
  I have also noticed that the hostname returned using the changeip command is different to the nme given in the sharing settings panel. 

• Removing the .local part of my host name.

  I can figure out how to remove .local from my servers host name. I am running a simple personal server so I don't have a domain of my own.
  It hasn't been an issue, but recently I have started trying to run the SlimDevice Server on my OSX Server.
  Anyhelp would be greatly appreciated. I'm hoping I don't have to restart.
  -Hays

  Not having or creating a DNS presence resorts to the use of .local domains for simplified network discovery. I you do not want to use .local domains, configure DNS on the server. You do not need to use a valid domain unless you are hosting mail (assuming you are not based on description of .local use). Simply create something that will not conflict with existing TLDs such as myserver.int or myserver.osx. Basically you will need to create a zone and an A record (with PTR auto-create checked). Test name and number resolution with nslookup and then configure your server to query itself.
  You will likely need to use the changeip command but if your services are few then you can probably ignore the two errors every few minutes in system log.
  Hope this helps

• Best practice to change IP?

  Hi everyone,
  I need to use VPN to connect to another network. The problem is that this network uses the same IP range as mine (10.0.1.x). I know that this is a problem and should be avoided, especially since the respective network's servers even have the same IP (10.0.1.3) and offer mostly the same services!
  I'm willing to change one of the two networks to avoid conflicts. Both are similar in size and setup:
  • NAT Router
  • Leopard Server (10.5.6)
  • Some Mac clients (mostly Leopard)
  • A few network printers
  Is it relatively painless to change an OS X Server's IP address? I've read some contrary things, where some are stating that you need to use the changeip command in Terminal. Others say it's sufficient to change it in Sys Prefs on the server followed by updating DNS.
  It's no big deal to reconfigure the router, workstations and printers at one location. But what is the correct way to change the server's IP?
  Here's the services I'm using at both locations:
  • AFP
  • DNS
  • FTP
  • iCal
  • Open Directory
  • Printing
  • Web
  Thanks a lot!
  Björn

  rkovelman wrote:
  Yes otherwise you have to manually enter in everything. Also passwords will be lost, just select all users besides the admin and make a default password.
  So this means using changeip kind of resets my OD database and even when doing a backup before the change and re-importing it I will lose all OD accounts' passwords?
  You simply go to OD and after backing up you take it from master to standalone.
  Ah, ok. I thought you were talking about the 3 kinds of setup you can choose when installing OS X Server. If you do not choose the Advanced Server there, you can only use the somewhat limited Server Preferences on your server and when you try to open Server Admin you get asked if you want to convert your server to Advanced. I thought you found a way of reversing this and couldn't imagine how on earth this could be possible.
  • I'm really no newbie, but I'm slightly confused by IP range notation. (ie 10.X.0.0/8 and 10.Y.0.0/8)
  Not sure what you mean and where you would use this... changeip does not need this.
  I was asking because Steve Krawcke was suggesting to use completely separate IP ranges, which made me think of just what exactly I can use. I don't want to be in need of changing IPs again one day, so I want to get this right.
  Can someone please take the time to correct (maybe by commenting?) my statements below if I'm wrong:
  • There are only some IP ranges that can be used privately and are not routed on the internet. Since I'm using a NAT router that's fine and I should use one of them.
  • Most home routers today come with a default IP of 192.168.x.1 and others (i.e. Apple AirPort Base Stations) use 10.0.1.1 as the default.
  • I should avoid using these in my environments. Otherwise I'll get problems with VPN users when the same IPs have been used at both ends.
  So if 10.0.0.0/8 = the range 10.0.0.0–10.255.255.255 does this mean I can freely use 10.123.0.1 as my router's IP and let's say 10.123.0.2 for the server and so forth? If so, can I still use a subnet mask of 255.255.255.0 or am I forced to choose something else? I really don't need more than max 50 IP addresses locally. But I'm confused, because in classful networks 10.0.0.0/8 meant a Class A network and I'm not sure I should use this?!
  Thanks!
  Björn